Up to [cvs.NetBSD.org] / pkgsrc / security / bearssl / patches
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: pkgsrc-2020Q2-base
Revision 1.2 / (download) - annotate - [select for diffs], Mon Jan 21 06:59:58 2019 UTC (5 years, 2 months ago) by agc
Branch: MAIN
CVS Tags: pkgsrc-2020Q2-base,
pkgsrc-2020Q2,
pkgsrc-2020Q1-base,
pkgsrc-2020Q1,
pkgsrc-2019Q4-base,
pkgsrc-2019Q4,
pkgsrc-2019Q3-base,
pkgsrc-2019Q3,
pkgsrc-2019Q2-base,
pkgsrc-2019Q2,
pkgsrc-2019Q1-base,
pkgsrc-2019Q1
Changes since 1.1: +6 -5
lines
Diff to previous 1.1 (colored)
Update security/bearssl from 0.5 to 0.6 Changes since previous version: + Added general-purpose implementations of EAX and CCM modes (including shared precomputation support for EAX). + Added general-purpose RSA/OAEP implementation. + Added general-purpose HKDF implementation. + Added support for CCM and CCM_8 TLS cipher suites (RFC 6655 and RFC 7251). + Added RSA and EC key generation. + Added private key encoding support ("raw" and PKCS#8 formats, both in DER and PEM, for RSA and EC key pairs). + Made Base64 encoding/decoding constant-time (with regards to the encoded data bytes). + Added a generic API for random seed providers. + Added an extra DRBG based on AES/CTR + Hirose construction for reseeding. + Some cosmetic fixes to avoid warnings with picky compilers. + Makefile fix to achieve compatibility with OpenBSD. + Fixed a bug in bit length computation for big integers (this was breaking RSA signatures with some specific implementations and key lengths). + Made SSL/TLS client stricter in cipher suite selection (to align with server behaviour).