cryptographic library release used in the project , a fork of GnuPG 2. The library provides a large collection of used in TLS, X.509 certificates, AEAD ciphers, TPMs, PKCS#11, password hashing, and post-quantum cryptography (hash-based signatures and key agreement based on McEliece and NewHope). The library is written in C++11 and under the BSD license.
Among in the new release:
- Added support for using NEON and AltiVec optimizations in a constant runtime AES implementation;
- Improved performance of RSA, GCM, OCB, XTS, CTR and ChaCha20Poly1305 implementations;
- Added support for generating Argon2 hashes larger than 64 bytes;
- DTLS has optimized MTU partitioning operations and added processing of connection breaks due to problems on the client side with subsequent reconnection from the same port number;
- Added support for indicating the rollback of TLS 1.3 connections to a lower protocol version;
- Added support for the algorithm for creating digital signatures ;
- Increased RDRAND performance on x86-64 systems;
- Added support for the hardware pseudo-random number generator provided on POWER9 processors and improved performance on POWER8 systems with AES instructions;
- Added new utilities "entropy", "base32_enc" and "base32_dec";
- Many header files are now marked for internal use only and will result in a warning when attempted to be used in applications;
- The ability to use the Python module on Windows is provided.
Source: opennet.ru