From: Dr. Stephen Henson <steve@openssl.org>
Date: Sun, 28 Feb 2016 22:43:30 +0000 (+0000)
Subject: Add CHANGES entry for X25519
X-Git-Tag: OpenSSL_1_1_0-pre4~444
X-Git-Url: https://git.openssl.org/?p=openssl.git;a=commitdiff_plain;h=71736242409da85aef5107167d44e601ee66841c

Add CHANGES entry for X25519

Reviewed-by: Rich Salz <rsalz@openssl.org>
---

diff --git a/CHANGES b/CHANGES
index e0ac7997be..41926e9db0 100644
--- a/CHANGES
+++ b/CHANGES
@@ -4,6 +4,22 @@
 
  Changes between 1.0.2f and 1.1.0  [xx XXX xxxx]
 
+  *) Add X25519 support.
+     Integrate support for X25519 into EC library. This includes support
+     for public and private key encoding using the format documented in
+     draft-josefsson-pkix-newcurves-01: specifically X25519 uses the
+     OID from that draft, encodes public keys using little endian
+     format in the ECPoint structure and private keys using
+     little endian form in the privateKey field of the ECPrivateKey
+     structure. TLS support complies with draft-ietf-tls-rfc4492bis-06
+     and uses X25519(29).
+
+     Note: the current version supports key generation, public and
+     private key encoding and ECDH key agreement using the EC API.
+     Low level point operations such as EC_POINT_add(), EC_POINT_mul()
+     are NOT supported.
+     [Steve Henson]
+
   *) Deprecate SRP_VBASE_get_by_user.
      SRP_VBASE_get_by_user had inconsistent memory management behaviour.
      In order to fix an unavoidable memory leak (CVE-2016-0798),