Changes between 1.0.1 and 1.1.0 [xx XXX xxxx]
+ *) Add support for HMAC DRBG from SP800-90. Update algorithm and POST
+ to handle HMAC cases.
+ [Steve Henson]
+
*) Add GCM support to TLS library. Some custom code is needed to split
the IV between the fixed (from PRF) and explicit (from TLS record)
portions. This adds all GCM ciphersuites supported by RFC5288 and
Changes between 1.0.0d and 1.0.0e [xx XXX xxxx]
+ *) Remove hard coded ecdsaWithSHA1 signature tests in ssl code and check
+ signature public key algorithm by using OID xref utilities instead.
+ Before this you could only use some ECC ciphersuites with SHA1 only.
+ [Steve Henson]
+
*) Add protection against ECDSA timing attacks as mentioned in the paper
by Billy Bob Brumley and Nicola Tuveri, see: