Abaphuhlisi beProjekthi ye-OpenBSD ukukhutshwa kohlelo oluphathwayo lwephakheji , apho ifolokhwe ye-OpenSSL iphuhliswayo, ejoliswe ekuboneleleni umgangatho ophezulu wokhuseleko. Iprojekthi ye-LibreSSL igxininise kwinkxaso ephezulu ye-SSL / TLS protocol ngokususa umsebenzi ongeyomfuneko, ukongeza iimpawu ezongezelelweyo zokhuseleko, kunye nokucoca kakhulu kunye nokusebenza kwakhona kwesiseko sekhowudi. Ukukhutshwa kwe-LibreSSL 2.9.1 kuthathwa njengokukhutshwa kovavanyo okuphuhlisa iimpawu eziya kubandakanywa kwi-OpenBSD 6.5.
Utshintsho kwi-LibreSSL 2.9.1:
- Umsebenzi ongezelelweyo we-SM3 hash (i-Chinese standard GB / T 32905-2016);
- I-SM4 i-block cipher eyongeziweyo (i-Chinese standard GB / T 32907-2016);
- Kongezwe iimakhro OPENSSL_NO_* ukuphucula ukuhambelana ne-OpenSSL;
- Indlela ye-EC_KEY_METHOD ifakwe ngokuyinxenye ukusuka kwi-OpenSSL;
- Kuphunyezwe ukulahleka kwe-OpenSSL 1.1 iifowuni ze-API;
- Inkxaso eyongeziweyo ye-XChaCha20 kunye ne-XChaCha20-Poly1305;
- Inkxaso eyongeziweyo yokudlulisa izitshixo ze-AES nge-interface ye-EVP;
- Kubonelelwe ngoqaliso oluzenzekelayo lwe-CRYPTO_LOCK;
- Ukuphucula ukuhambelana ne-OpenSSL, inkxaso ye-pbkdf2 isitshixo se-hashing yongezwe kwizinto eziluncedo ze-openssl, ngokungagqibekanga, i-enc, crl, x509 kunye nemiyalelo ye-dgst isebenzisa indlela ye-sha25 hashing;
- Uvavanyo olongeziweyo ukujonga ukuphatheka phakathi kwe-LibreSSL kunye ne-OpenSSL
Ngo-1.0/1.1; - Ukongeza iimvavanyo ezongezelelweyo zeWycheproof;
- Ukongezwa kokukwazi ukusebenzisa i-algorithm ye-PSS ye-RSA kutyikityo lwedijithali xa uthethathethwano ngoqhagamshelwano (ukuxhawula izandla);
- Ukuphunyezwa okongeziweyo komatshini karhulumente wokuphatha ukuxhawula isandla, kuchazwe kwi-RFC-8446;
- Isusiwe ilifa le-ASN.1 ikhowudi ehambelana ne-libcrypto engazange isetyenziswe malunga ne-20 iminyaka;
- Ukongezwa kwendibano ye-32-bit ye-ARM kunye ne-Mingw-w64 iinkqubo;
- Ukuphucula ukuhambelana neqonga le-Android.
umthombo: opennet.ru