zzy/openssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

news: note the addition of ECX and SHAKE256 to the FIPS provider as non-approved algorithms

Browse Source 
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/11371)
This commit is contained in:
Pauli 2020-04-16 07:55:17 +10:00
parent b5bcc05302
commit 19985ac42c
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
NEWS.md
View File

@ -21,6 +21,9 @@ OpenSSL 3.0
### Major changes between OpenSSL 1.1.1 and OpenSSL 3.0 [under development] ### ### Major changes between OpenSSL 1.1.1 and OpenSSL 3.0 [under development] ###
* The X25519, X448, Ed25519, Ed448 and SHAKE256 algorithms are included in
the FIPS provider. None have the "fips=yes" property set and, as such,
will not be accidentially used.
* The algorithm specific public key command line applications have * The algorithm specific public key command line applications have
been deprecated. These include dhparam, gendsa and others. The pkey been deprecated. These include dhparam, gendsa and others. The pkey
alternatives should be used intead: pkey, pkeyparam and genpkey. alternatives should be used intead: pkey, pkeyparam and genpkey.