diff options
author | Todd Short <tshort@akamai.com> | 2017-01-11 16:38:44 -0500 |
---|---|---|
committer | Rich Salz <rsalz@openssl.org> | 2017-02-01 14:14:36 -0500 |
commit | 3f5616d734a92fdf99ab827f21e5b6cab85e7194 (patch) | |
tree | 9c106795f72bc6622dfdca63d723ce0127011fc7 /CHANGES | |
parent | 122fa088524571a3b60ebf301873f69afdac8f7a (diff) | |
download | openssl-3f5616d734a92fdf99ab827f21e5b6cab85e7194.tar.gz |
Add support for parameterized SipHash
The core SipHash supports either 8 or 16-byte output and a configurable
number of rounds.
The default behavior, as added to EVP, is to use 16-byte output and
2,4 rounds, which matches the behavior of most implementations.
There is an EVP_PKEY_CTRL that can control the output size.
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2216)
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 3 |
1 files changed, 3 insertions, 0 deletions
@@ -4,6 +4,9 @@ Changes between 1.1.0a and 1.1.1 [xx XXX xxxx] + *) Add support for SipHash + [Todd Short] + *) OpenSSL now fails if it receives an unrecognised record type in TLS1.0 or TLS1.1. Previously this only happened in SSLv3 and TLS1.2. This is to prevent issues where no progress is being made and the peer continually |