CHANGES entry: for ECC parameters with NULL or zero cofactor, compute it
This is a forward port from https://github.com/openssl/openssl/pull/9781
of the CHANGES entry for the functionality added in
https://github.com/openssl/openssl/pull/9727
(cherry picked from commit 4b965086cb)
Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/9797)
This commit is contained in:
Billy Brumley
Nicola Tuveri
parent
5041ea38c9
commit
a1a0e6f285
1 changed files with 7 additions and 0 deletions
7
CHANGES
7
CHANGES
|
|
@ -9,6 +9,13 @@
|
||||||
|
|
||||||
Changes between 1.1.1 and 3.0.0 [xx XXX xxxx]
|
Changes between 1.1.1 and 3.0.0 [xx XXX xxxx]
|
||||||
|
|
||||||
|
*) Compute ECC cofactors if not provided during EC_GROUP construction. Before
|
||||||
|
this change, EC_GROUP_set_generator would accept order and/or cofactor as
|
||||||
|
NULL. After this change, only the cofactor parameter can be NULL. It also
|
||||||
|
does some minimal sanity checks on the passed order.
|
||||||
|
(CVE-2019-1547)
|
||||||
|
[Billy Bob Brumley]
|
||||||
|
|
||||||
*) Early start up entropy quality from the DEVRANDOM seed source has been
|
*) Early start up entropy quality from the DEVRANDOM seed source has been
|
||||||
improved for older Linux systems. The RAND subsystem will wait for
|
improved for older Linux systems. The RAND subsystem will wait for
|
||||||
/dev/random to be producing output before seeding from /dev/urandom.
|
/dev/random to be producing output before seeding from /dev/urandom.
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue