Skip to content

v1.1.0.22
Compare
Choose a tag to compare
@Kritner Kritner released this 16 Nov 23:52
· 31 commits to master since this release
v1.1.0.22
1c98bac
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Demo: 2021-11-16
Prod: 2021-12-09

BREAKING CHANGE for crypto implementations around XOF MCT and tls v1.3, see their line items below and corresponding issues for more details.

  • TLS v1.3 - updates the generation of secrets to utilize the range of messages posted to the transcript hash, rather than just "the first and last message"
    • This is a breaking change to existing harnesses/implementations, but does not invalidate previous testing
    • #151
  • KAS KDFs adds SaltLen to prompt projection
  • EDDSA
    • Previously the act of mangling, then encoding/decoding the mangled key would often put the point back onto the curve. We're now validating after a encoding/decode cycle that the key fails validation, rather than just checking pre-encode/decode that the point isn't on the curve.
    • There was a test for ensuring the IUT can detect bad keys that are outside of the valid range of values for the group. This test is not really valid since public keys are communicated in an encoded form, and the act of decoding them takes their value modulo the field size - the decoded key can never be outside of the range for that reason
    • #146
  • XOF MCTs - updates XOF MCTs to account for the provided math domain
    • This is a breaking change to existing harnesses/implementations, but does not invalidate previous testing
    • usnistgov/ACVP#1246
  • AES-CCM - correction to max testable AAD from 256 -> 4096, in "non 1<<19" testing scenarios.
Assets 2
Loading