richard
/
shadowsocks-libev
mirror of https://github.com/shadowsocks/shadowsocks-libev.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
729 Commits
8 Branches
85 Tags
14 MiB
Tree: cb07018f8f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'cb07018f8f'
${ noResults }
shadowsocks-libev/libsodium/ChangeLog

186 lines
8.6 KiB
Raw Normal View History

integrate libsodium as a subproject
9 years ago
  2. * Version 1.0.1
  3. - DLL_EXPORT was renamed SODIUM_DLL_EXPORT in order to avoid
  4. collisions with similar macros defined by other libraries.
  5. - sodium_bin2hex() is now constant-time.
  6. - crypto_secretbox_detached() now supports overlapping input and output
  7. regions.
  8. - NaCl's donna_c64 implementation of curve25519 was reading an extra byte
  9. past the end of the buffer containing the base point. This has been
  10. fixed.
  12. * Version 1.0.0
  13. - The API and ABI are now stable. New features will be added, but
  14. backward-compatibility is guaranteed through all the 1.x.y releases.
  15. - crypto_sign() properly works with overlapping regions again. Thanks
  16. to @pysiak for reporting this regression introduced in version 0.6.1.
  17. - The test suite has been extended.
  19. * Version 0.7.1 (1.0 RC2)
  20. - This is the second release candidate of Sodium 1.0. Minor
  21. compilation, readability and portability changes have been made and the
  22. test suite was improved, but the API is the same as the previous release
  23. candidate.
  25. * Version 0.7.0 (1.0 RC1)
  26. - Allocating memory to store sensitive data can now be done using
  27. sodium_malloc() and sodium_allocarray(). These functions add guard
  28. pages around the protected data to make it less likely to be
  29. accessible in a heartbleed-like scenario. In addition, the protection
  30. for memory regions allocated that way can be changed using
  31. sodium_mprotect_noaccess(), sodium_mprotect_readonly() and
  32. sodium_mprotect_readwrite().
  33. - ed25519 keys can be converted to curve25519 keys with
  34. crypto_sign_ed25519_pk_to_curve25519() and
  35. crypto_sign_ed25519_sk_to_curve25519(). This allows using the same
  36. keys for signature and encryption.
  37. - The seed and the public key can be extracted from an ed25519 key
  38. using crypto_sign_ed25519_sk_to_seed() and crypto_sign_ed25519_sk_to_pk().
  39. - aes256 was removed. A timing-attack resistant implementation might
  40. be added later, but not before version 1.0 is tagged.
  41. - The crypto_pwhash_scryptxsalsa208sha256_* compatibility layer was
  42. removed. Use crypto_pwhash_scryptsalsa208sha256_*.
  43. - The compatibility layer for implementation-specific functions was
  44. removed.
  45. - Compilation issues with Mingw64 on MSYS (not MSYS2) were fixed.
  46. - crypto_pwhash_scryptsalsa208sha256_STRPREFIX was added: it contains
  47. the prefix produced by crypto_pwhash_scryptsalsa208sha256_str()
  49. * Version 0.6.1
  50. - Important bug fix: when crypto_sign_open() was given a signed
  51. message too short to even contain a signature, it was putting an
  52. unlimited amount of zeros into the target buffer instead of
  53. immediately returning -1. The bug was introduced in version 0.5.0.
  54. - New API: crypto_sign_detached() and crypto_sign_verify_detached()
  55. to produce and verify ed25519 signatures without having to duplicate
  56. the message.
  57. - New ./configure switch: --enable-minimal, to create a smaller
  58. library, with only the functions required for the high-level API.
  59. Mainly useful for the JavaScript target and embedded systems.
  60. - All the symbols are now exported by the Emscripten build script.
  61. - The pkg-config .pc file is now always installed even if the
  62. pkg-config tool is not available during the installation.
  64. * Version 0.6.0
  65. - The ChaCha20 stream cipher has been added, as crypto_stream_chacha20_*
  66. - The ChaCha20Poly1305 AEAD construction has been implemented, as
  67. crypto_aead_chacha20poly1305_*
  68. - The _easy API does not require any heap allocations any more and
  69. does not have any overhead over the NaCl API. With the password
  70. hashing function being an obvious exception, the library doesn't
  71. allocate and will not allocate heap memory ever.
  72. - crypto_box and crypto_secretbox have a new _detached API to store
  73. the authentication tag and the encrypted message separately.
  74. - crypto_pwhash_scryptxsalsa208sha256*() functions have been renamed
  75. crypto_pwhash_scryptsalsa208sha256*().
  76. - The low-level crypto_pwhash_scryptsalsa208sha256_ll() function
  77. allows setting individual parameters of the scrypt function.
  78. - New macros and functions for recommended crypto_pwhash_* parameters
  79. have been added.
  80. - Similarly to crypto_sign_seed_keypair(), crypto_box_seed_keypair()
  81. has been introduced to deterministically generate a key pair from a seed.
  82. - crypto_onetimeauth() now provides a streaming interface.
  83. - crypto_stream_chacha20_xor_ic() and crypto_stream_salsa20_xor_ic()
  84. have been added to use a non-zero initial block counter.
  85. - On Windows, CryptGenRandom() was replaced by RtlGenRandom(), which
  86. doesn't require the Crypt API.
  87. - The high bit in curve25519 is masked instead of processing the key as
  88. a 256-bit value.
  89. - The curve25519 ref implementation was replaced by the latest ref10
  90. implementation from Supercop.
  91. - sodium_mlock() now prevents memory from being included in coredumps
  92. on Linux 3.4+
  94. * Version 0.5.0
  95. - sodium_mlock()/sodium_munlock() have been introduced to lock pages
  96. in memory before storing sensitive data, and to zero them before
  97. unlocking them.
  98. - High-level wrappers for crypto_box and crypto_secretbox
  99. (crypto_box_easy and crypto_secretbox_easy) can be used to avoid
  100. dealing with the specific memory layout regular functions depend on.
  101. - crypto_pwhash_scryptsalsa208sha256* functions have been added
  102. to derive a key from a password, and for password storage.
  103. - Salsa20 and ed25519 implementations now support overlapping
  104. inputs/keys/outputs (changes imported from supercop-20140505).
  105. - New build scripts for Visual Studio, Emscripten, different Android
  106. architectures and msys2 are available.
  107. - The poly1305-53 implementation has been replaced with Floodyberry's
  108. poly1305-donna32 and poly1305-donna64 implementations.
  109. - sodium_hex2bin() has been added to complement sodium_bin2hex().
  110. - On OpenBSD and Bitrig, arc4random() is used instead of reading
  111. /dev/urandom.
  112. - crypto_auth_hmac_sha512() has been implemented.
  113. - sha256 and sha512 now have a streaming interface.
  114. - hmacsha256, hmacsha512 and hmacsha512256 now support keys of
  115. arbitrary length, and have a streaming interface.
  116. - crypto_verify_64() has been implemented.
  117. - first-class Visual Studio build system, thanks to @evoskuil
  118. - CPU features are now detected at runtime.
  120. * Version 0.4.5
  121. - Restore compatibility with OSX <= 10.6
  123. * Version 0.4.4
  124. - Visual Studio is officially supported (VC 2010 & VC 2013)
  125. - mingw64 is now supported
  126. - big-endian architectures are now supported as well
  127. - The donna_c64 implementation of curve25519_donna_c64 now handles
  128. non-canonical points like the ref implementation
  129. - Missing scalarmult_curve25519 and stream_salsa20 constants are now exported
  130. - A crypto_onetimeauth_poly1305_ref() wrapper has been added
  132. * Version 0.4.3
  133. - crypto_sign_seedbytes() and crypto_sign_SEEDBYTES were added.
  134. - crypto_onetimeauth_poly1305_implementation_name() was added.
  135. - poly1305-ref has been replaced by a faster implementation,
  136. Floodyberry's poly1305-donna-unrolled.
  137. - Stackmarkings have been added to assembly code, for Hardened Gentoo.
  138. - pkg-config can now be used in order to retrieve compilations flags for
  139. using libsodium.
  140. - crypto_stream_aes256estream_*() can now deal with unaligned input
  141. on platforms that require word alignment.
  142. - portability improvements.
  144. * Version 0.4.2
  145. - All NaCl constants are now also exposed as functions.
  146. - The Android and iOS cross-compilation script have been improved.
  147. - libsodium can now be cross-compiled to Windows from Linux.
  148. - libsodium can now be compiled with emscripten.
  149. - New convenience function (prototyped in utils.h): sodium_bin2hex().
  151. * Version 0.4.1
  152. - sodium_version_*() functions were not exported in version 0.4. They
  153. are now visible as intended.
  154. - sodium_init() now calls randombytes_stir().
  155. - optimized assembly version of salsa20 is now used on amd64.
  156. - further cleanups and enhanced compatibility with non-C99 compilers.
  158. * Version 0.4
  159. - Most constants and operations are now available as actual functions
  160. instead of macros, making it easier to use from other languages.
  161. - New operation: crypto_generichash, featuring a variable key size, a
  162. variable output size, and a streaming API. Currently implemented using
  163. Blake2b.
  164. - The package can be compiled in a separate directory.
  165. - aes128ctr functions are exported.
  166. - Optimized versions of curve25519 (curve25519_donna_c64), poly1305
  167. (poly1305_53) and ed25519 (ed25519_ref10) are available. Optionally calling
  168. sodium_init() once before using the library makes it pick the fastest
  169. implementation.
  170. - New convenience function: sodium_memzero() in order to securely
  171. wipe a memory area.
  172. - A whole bunch of cleanups and portability enhancements.
  173. - On Windows, a .REF file is generated along with the shared library,
  174. for use with Visual Studio. The installation path for these has become
  175. $prefix/bin as expected by MingW.
  177. * Version 0.3
  178. - The crypto_shorthash operation has been added, implemented using
  179. SipHash-2-4.
  181. * Version 0.2
  182. - crypto_sign_seed_keypair() has been added
  184. * Version 0.1
  185. - Initial release.