I-OpenBSD Project Developers
Izici ze-LibreSSL 3.1.0:
- Ukuqaliswa kokuqala kwe-TLS 1.3 kuhlongozwa ngokusekelwe emshinini wombuso omusha kanye nesistimu engaphansi yokusebenza ngamarekhodi. Ngokuzenzakalelayo, ingxenye yeklayenti kuphela ye-TLS 1.3 enikwe amandla okwamanje; ingxenye yeseva ihlelelwe ukuthi yenziwe isebenze ngokuzenzakalela ekukhishweni okuzayo.
- Ikhodi ihlanziwe, ukuhlukaniswa kwephrothokholi kanye nokuphathwa kwememori kuthuthukisiwe.
- Izindlela ze-RSA-PSS kanye ne-RSA-OAEP zisusiwe ku-OpenSSL 1.1.1.
- Ukuqaliswa kuhanjiswe ku-OpenSSL 1.1.1 futhi kunikwe amandla ngokuzenzakalela
CMS (I-Cryptographic Message Syntax). Umyalo we-"cms" ungeziwe ku-openssl utility. - Ukuhambisana okuthuthukisiwe ne-OpenSSL 1.1.1 ngokuthumela izinguquko ezithile emuva.
- Kwengezwe isethi enkulu yokuhlolwa kokusebenza okusha kwe-cryptographic.
- Ukuziphatha kwe-EVP_chacha20() kusondele kuma-semantics ye-OpenSSL.
- Kwengezwe ikhono lokumisa indawo yesethi enezitifiketi zesiphathimandla sokunikeza izitifiketi.
- Kumsebenzi we-openssl, umyalo othi "req" usebenzisa inketho ethi "-addext".
Ngaphezu kwalokho, kungaphawulwa
Phakathi kwe
- Ukuqaliswa okungeziwe kwemodi
I-GCM (Imodi ye-Galois/Counter), isheshiselwe ama-POWER8 processors kusetshenziswa i-VPSUMD vector imiyalelo. - Kuzinhlelo ze-ARM NAMANDLA, ukuqaliswa kokusebenza kwe-vector permutation ye-AES enesikhathi sokwenza njalo kusheshiswe kakhulu.
- Kuphakanyiswe i-algorithm entsha ye-modulo, eshesha futhi evikela kangcono ekuhlaselweni kwesiteshi eseceleni.
- Ukuthuthukiswa kwenziwe ukuze kusheshiswe i-ECDSA/ECDH ngokunciphisa inkambu ye-NIST.
Source: opennet.ru