diff options
| author | Werner Koch <wk@gnupg.org> | 2013-07-29 15:09:33 +0200 |
|---|---|---|
| committer | Werner Koch <wk@gnupg.org> | 2013-07-29 15:09:33 +0200 |
| commit | 6e0a9786637d649b48aae0e611a12e12beef9b3b (patch) | |
| tree | bb0a78af045566623d2f94ae037faa0c888b424c /NEWS | |
| parent | 1cfa79aabc5d0fd8d124901054475e90ab7d9cde (diff) | |
| download | libgcrypt-6e0a9786637d649b48aae0e611a12e12beef9b3b.tar.gz | |
Implement deterministic ECDSA as specified by rfc-6979.
* cipher/ecc.c (sign): Add args FLAGS and HASHALGO. Convert an opaque
MPI as INPUT. Implement rfc-6979.
(ecc_sign): Remove the opaque MPI code and pass FLAGS to sign.
(verify): Do not allocate and compute Y; it is not used.
(ecc_verify): Truncate the hash value if needed.
* tests/dsa-rfc6979.c (check_dsa_rfc6979): Add ECDSA test cases.
Signed-off-by: Werner Koch <wk@gnupg.org>
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 5 |
1 files changed, 5 insertions, 0 deletions
@@ -19,6 +19,11 @@ Noteworthy changes in version 1.6.0 (unreleased) * Added support for the SCRYPT algorithm. + * Mitigate the Yarom/Falkner flush+reload side-channel attack on RSA + secret keys. See <http://eprint.iacr.org/2013/448> [CVE-2013-4242]. + + * Support Deterministic DSA as per RFC-6969. + * Interface changes relative to the 1.5.0 release: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ gcry_ac_* REMOVED. |