From 69dbff3352f42bd6d47112a2223145a0e3021a9e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Mitch=20Lindgren=20=F0=9F=A6=8E?= Date: Fri, 2 Dec 2022 22:48:15 +0000 Subject: [PATCH] Merged PR 8206539: Bump version to 103.0.1 Bump version to 103.0.1 and update changelog --- CHANGELOG.md | 19 +++++++++++++------ inc/symcrypt_internal_shared.inc | 2 +- 2 files changed, 14 insertions(+), 7 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 9be00ed4..3d0ebfc0 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,41 +1,48 @@ -# Version 103.0 +# Version 103.0.1 + +- Linux RNG improvements and additional testing + +# Version 103.0.0 - Add SRTP-KDF and SSH-KDF implementations - Add optimized SHA-2 implementations +- Add SHA-3 implementation - Fix integer truncation issue in 32-bit Linux builds - Refactor CMake files to simplify build steps and increase flexibility - Fix bug for SymCryptRsakeyGenerate for encrypt-only keys - Create and test against simple SymCrypt Windows test module (DLL) - Remove the module export of g_SymCryptFipsSelftestsPerformed and replace it with SymCryptFipsGetSelftestsPerformed - Enable SymCrypt unit tests to drive a dynamically-linked module +- Fix unit test failure importing DH key to CNG - Removed Linux embedded module, as generic ARM64 module is the same - Rejig CPUID logic for VAES and AVX +- Disable AVX2 in Windows boot environment -# Version 102.0 +# Version 102.0.0 - Breaking change to Asymmetric key generation and import handling, sanitizing flags required for FIPS - Trim symbols exposed in SymCrypt module to those specified in symcrypt.h - Introduce logic enabling FIPS per-key tests to be deferred to before first use, rather than at generation time -# Version 101.3 +# Version 101.3.0 - Fix for OpenEnclave binary to workaround clang bug - Fix SymCryptRsaPssVerify to return SYMCRYPT_SIGNATURE_VERIFICATION_FAILURE for invalid signatures, rather than SYMCRYPT_INVALID_ARGUMENT - Fix for SymCryptShortWeierstrassAddSideChannelUnsafe which is only use in ECDSA verification on SW curves - An owner of a private ECC key could create an invalid signature that SymCrypt would verify, leaking their private key in the process -# Version 101.2 +# Version 101.2.0 - Added key pairwise consistency tests for RSA, DSA, DH, ECDSA and ECDH key generation, per FIPS 140-3 requirements - Added Session APIs for AES-GCM - For Encryption, this enables multithreaded IV generation within the SymCrypt FIPS boundary - For Decryption, this enables multithreaded replay protection detecting reuse of IVs in received messages -# Version 101.1 +# Version 101.1.0 - Support for Group 20 in SAE method -# Version 101.0 +# Version 101.0.0 - Support stable ABI: change SYMCRYPT_ERROR definition so that error values no longer change with version changes - Support proper shared library versioning in CMake build scripts diff --git a/inc/symcrypt_internal_shared.inc b/inc/symcrypt_internal_shared.inc index b9c7d741..7f72aa97 100644 --- a/inc/symcrypt_internal_shared.inc +++ b/inc/symcrypt_internal_shared.inc @@ -24,7 +24,7 @@ #define SYMCRYPT_CODE_VERSION_API 103 #define SYMCRYPT_CODE_VERSION_MINOR 0 -#define SYMCRYPT_CODE_VERSION_PATCH 0 +#define SYMCRYPT_CODE_VERSION_PATCH 1 #if defined(DBG) #define SYMCRYPT_DEBUG 1