Niels Möller
Ina farin cikin sanar da wani sabon sabon fitowar GNU Nettle, wani ɗakin karatu mai ƙarancin matakin ɓoye bayanai. Wannan fitowar ta haɗa da canje-canje da dama na API, wasu masu mahimmanci, da kuma cire ayyukan da ba a yi amfani da su ba. Wani sabon fasali mai ban mamaki shine goyon bayan sa hannun SLH-DSA (algorithm na sa hannu na dijital wanda ba shi da jihar hash).
Wannan sabon sabon tsari ne. Ya haɗa da tallafi ga SLH-DSA. An yi canje-canje da dama ga Nettle API, kuma an cire ayyukan da aka daina amfani da su. Bugu da ƙari, an inganta ABI, wanda hakan ya sa API ɗin ba ya canzawa sosai. Musamman ma, an rage tsarin mahallin algorithms da yawa.
Canje -canje:
- Ayyukan _digest na algorithms na hash, MAC, da AEAD, ba sa karɓar girman digest da ake so a matsayin hujja; maimakon haka, koyaushe suna dawo da cikakken girman digest. An canza nau'in nettle_hash_digest_func daidai gwargwado.
- Ayyukan sarrafa cikakkun saƙonni ta amfani da CCM AES yanzu suna karɓar mahallin ɓoyewa akai-akai a matsayin hujja ta farko. Misali, hujja ta farko ta aikin ccm_aes128_encrypt_message yanzu shine tsarin aes128_ctx* akai-akai. A da, wannan shine tsarin ccm_aes128_ctx*, wanda ya yi watsi da komai banda mahallin ɓoyewa da ke ƙasa.
- Ayyukan SHA3 yanzu suna amfani da tsarin sha3_ctx iri ɗaya ga duk nau'ikan hash, da kuma aikin sha3_init iri ɗaya. Tsoffin sunaye, kamar sha3_256_ctx da sha3_256_init, ana bayyana su a matsayin laƙabi na preprocessor don dacewa da baya.
- Hujjar dst_length ta ayyukan base16_decode_update da base64_decode_update yanzu hujja ce ta shigarwa da fitarwa. Idan aka yi amfani da ita azaman shigarwa, dole ne ta ƙunshi girman ma'aunin ...
source: linux.org.ru
