Matthew Iversen | 69a6fad | 2014-02-25 02:10:44 +1100 | [diff] [blame] | 1 | Changelog |
| 2 | ========= |
| 3 | |
Paul Kehrer | 1757fe3 | 2014-07-07 22:29:23 -0500 | [diff] [blame] | 4 | 0.6 - `master`_ |
| 5 | ~~~~~~~~~~~~~~~ |
| 6 | |
| 7 | .. note:: This version is not yet released and is under active development. |
| 8 | |
Alex Gaynor | ef82334 | 2014-09-27 12:04:22 -0400 | [diff] [blame] | 9 | * Added |
| 10 | :func:`~cryptography.hazmat.primitives.serialization.load_pem_private_key` to |
| 11 | ease loading private keys, and |
| 12 | :func:`~cryptography.hazmat.primitives.serialization.load_pem_public_key` to |
| 13 | support loading public keys. |
Alex Gaynor | 1658f94 | 2014-07-08 00:02:37 -0700 | [diff] [blame] | 14 | * Removed the, deprecated in 0.4, support for the ``salt_length`` argument to |
| 15 | the :class:`~cryptography.hazmat.primitives.asymmetric.padding.MGF1` |
| 16 | constructor. The ``salt_length`` should be passed to |
| 17 | :class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS` instead. |
Paul Kehrer | f4fbf39 | 2014-08-21 08:36:49 -1000 | [diff] [blame] | 18 | * Fix compilation on OS X Yosemite. |
Paul Kehrer | 77e95a0 | 2014-09-25 12:28:07 -0500 | [diff] [blame] | 19 | * Deprecated ``elliptic_curve_private_key_from_numbers`` and |
| 20 | ``elliptic_curve_public_key_from_numbers`` in favor of |
| 21 | ``load_elliptic_curve_private_numbers`` and |
| 22 | ``load_elliptic_curve_public_numbers`` on |
| 23 | :class:`~cryptography.hazmat.backends.interfaces.EllipticCurveBackend`. |
Paul Kehrer | 4c77365 | 2014-09-27 11:26:02 -0500 | [diff] [blame] | 24 | * Added |
Paul Kehrer | 5f11d8d | 2014-09-28 09:42:47 -0500 | [diff] [blame] | 25 | :class:`~cryptography.hazmat.primitives.interfaces.EllipticCurvePrivateKeyWithNumbers` |
Paul Kehrer | 4c77365 | 2014-09-27 11:26:02 -0500 | [diff] [blame] | 26 | and |
Paul Kehrer | 5f11d8d | 2014-09-28 09:42:47 -0500 | [diff] [blame] | 27 | :class:`~cryptography.hazmat.primitives.interfaces.EllipticCurvePublicKeyWithNumbers` |
Paul Kehrer | 4c77365 | 2014-09-27 11:26:02 -0500 | [diff] [blame] | 28 | support. |
Paul Kehrer | f378e40 | 2014-09-27 11:28:42 -0500 | [diff] [blame] | 29 | * Work around three GCM related bugs in CommonCrypto and OpenSSL. |
Paul Kehrer | 4c77365 | 2014-09-27 11:26:02 -0500 | [diff] [blame] | 30 | |
| 31 | * On the CommonCrypto backend adding AAD but not subsequently calling update |
| 32 | would return null tag bytes. |
| 33 | |
| 34 | * One the CommonCrypto backend a call to update without an empty add AAD call |
| 35 | would return null ciphertext bytes. |
| 36 | |
| 37 | * On the OpenSSL backend with certain versions adding AAD only would give |
| 38 | invalid tag bytes. |
| 39 | |
| 40 | * Support loading EC private keys from PEM. |
Alex Gaynor | 1658f94 | 2014-07-08 00:02:37 -0700 | [diff] [blame] | 41 | |
Paul Kehrer | 01f0c67 | 2014-08-20 20:15:18 -1000 | [diff] [blame] | 42 | 0.5.4 - 2014-08-20 |
| 43 | ~~~~~~~~~~~~~~~~~~ |
| 44 | |
| 45 | * Added several functions to the OpenSSL bindings to support new |
| 46 | functionality in pyOpenSSL. |
| 47 | * Fixed a redefined constant causing compilation failure with Solaris 11.2. |
| 48 | |
Paul Kehrer | 86cf5b1 | 2014-08-07 05:38:17 -1000 | [diff] [blame] | 49 | 0.5.3 - 2014-08-06 |
| 50 | ~~~~~~~~~~~~~~~~~~ |
| 51 | |
| 52 | * Updated Windows wheels to be compiled against OpenSSL 1.0.1i. |
| 53 | |
Paul Kehrer | 2456e66 | 2014-07-09 19:51:32 -0500 | [diff] [blame] | 54 | 0.5.2 - 2014-07-09 |
| 55 | ~~~~~~~~~~~~~~~~~~ |
| 56 | |
| 57 | * Add |
| 58 | :class:`~cryptography.hazmat.backends.interfaces.TraditionalOpenSSLSerializationBackend` |
| 59 | support to :doc:`/hazmat/backends/multibackend`. |
| 60 | * Fix compilation error on OS X 10.8 (Mountain Lion). |
| 61 | |
Paul Kehrer | f092d73 | 2014-07-07 19:42:15 -0500 | [diff] [blame] | 62 | 0.5.1 - 2014-07-07 |
| 63 | ~~~~~~~~~~~~~~~~~~ |
| 64 | |
| 65 | * Add |
| 66 | :class:`~cryptography.hazmat.backends.interfaces.PKCS8SerializationBackend` |
| 67 | support to :doc:`/hazmat/backends/multibackend`. |
| 68 | |
Paul Kehrer | 3c6a239 | 2014-07-07 08:29:07 -0500 | [diff] [blame] | 69 | 0.5 - 2014-07-07 |
| 70 | ~~~~~~~~~~~~~~~~ |
Paul Kehrer | 50a0485 | 2014-05-03 08:57:13 -0500 | [diff] [blame] | 71 | |
Alex Gaynor | 8f1b8e8 | 2014-06-29 20:43:29 -0700 | [diff] [blame] | 72 | * **BACKWARDS INCOMPATIBLE:** |
| 73 | :class:`~cryptography.hazmat.primitives.ciphers.modes.GCM` no longer allows |
| 74 | truncation of tags by default. Previous versions of ``cryptography`` allowed |
| 75 | tags to be truncated by default, applications wishing to preserve this |
Alex Gaynor | 4efe61a | 2014-06-29 20:44:53 -0700 | [diff] [blame] | 76 | behavior (not recommended) can pass the ``min_tag_length`` argument. |
Paul Kehrer | 8987bcb | 2014-07-06 09:28:29 -0500 | [diff] [blame] | 77 | * Windows builds now statically link OpenSSL by default. When installing a |
Paul Kehrer | 3df9a31 | 2014-07-06 09:25:29 -0500 | [diff] [blame] | 78 | wheel on Windows you no longer need to install OpenSSL separately. Windows |
| 79 | users can switch between static and dynamic linking with an environment |
| 80 | variable. See :doc:`/installation` for more details. |
Paul Kehrer | 88bac25 | 2014-05-21 12:42:13 -0500 | [diff] [blame] | 81 | * Added :class:`~cryptography.hazmat.primitives.kdf.hkdf.HKDFExpand`. |
Paul Kehrer | 2a947c4 | 2014-05-15 17:22:08 -0400 | [diff] [blame] | 82 | * Added :class:`~cryptography.hazmat.primitives.ciphers.modes.CFB8` support |
| 83 | for :class:`~cryptography.hazmat.primitives.ciphers.algorithms.AES` and |
| 84 | :class:`~cryptography.hazmat.primitives.ciphers.algorithms.TripleDES` on |
| 85 | :doc:`/hazmat/backends/commoncrypto` and :doc:`/hazmat/backends/openssl`. |
Paul Kehrer | 055f960 | 2014-05-20 23:21:26 -0500 | [diff] [blame] | 86 | * Added ``AES`` :class:`~cryptography.hazmat.primitives.ciphers.modes.CTR` |
| 87 | support to the OpenSSL backend when linked against 0.9.8. |
Paul Kehrer | 286c7dc | 2014-05-31 12:05:38 -0500 | [diff] [blame] | 88 | * Added |
| 89 | :class:`~cryptography.hazmat.backends.interfaces.PKCS8SerializationBackend` |
| 90 | and |
| 91 | :class:`~cryptography.hazmat.backends.interfaces.TraditionalOpenSSLSerializationBackend` |
| 92 | support to the :doc:`/hazmat/backends/openssl`. |
Paul Kehrer | 21fc582 | 2014-07-04 09:28:55 -0500 | [diff] [blame] | 93 | * Added :doc:`/hazmat/primitives/asymmetric/ec` and |
| 94 | :class:`~cryptography.hazmat.backends.interfaces.EllipticCurveBackend`. |
Paul Kehrer | d1bac5e | 2014-06-13 12:34:49 -0500 | [diff] [blame] | 95 | * Added :class:`~cryptography.hazmat.primitives.ciphers.modes.ECB` support |
| 96 | for :class:`~cryptography.hazmat.primitives.ciphers.algorithms.TripleDES` on |
| 97 | :doc:`/hazmat/backends/commoncrypto` and :doc:`/hazmat/backends/openssl`. |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 98 | * Deprecated |
| 99 | :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKey` in |
| 100 | favor of backend specific providers of the |
Paul Kehrer | f2fb02a | 2014-06-19 10:16:42 -0600 | [diff] [blame] | 101 | :class:`~cryptography.hazmat.primitives.interfaces.RSAPrivateKey` interface. |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 102 | * Deprecated |
| 103 | :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKey` in favor |
| 104 | of backend specific providers of the |
Paul Kehrer | f2fb02a | 2014-06-19 10:16:42 -0600 | [diff] [blame] | 105 | :class:`~cryptography.hazmat.primitives.interfaces.RSAPublicKey` interface. |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 106 | * Deprecated |
| 107 | :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPrivateKey` in |
| 108 | favor of backend specific providers of the |
Paul Kehrer | 512ac22 | 2014-06-26 16:40:05 -0600 | [diff] [blame] | 109 | :class:`~cryptography.hazmat.primitives.interfaces.DSAPrivateKey` interface. |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 110 | * Deprecated |
| 111 | :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPublicKey` in favor |
| 112 | of backend specific providers of the |
Paul Kehrer | 512ac22 | 2014-06-26 16:40:05 -0600 | [diff] [blame] | 113 | :class:`~cryptography.hazmat.primitives.interfaces.DSAPublicKey` interface. |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 114 | * Deprecated |
| 115 | :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAParameters` in |
| 116 | favor of backend specific providers of the |
Paul Kehrer | 512ac22 | 2014-06-26 16:40:05 -0600 | [diff] [blame] | 117 | :class:`~cryptography.hazmat.primitives.interfaces.DSAParameters` interface. |
Paul Kehrer | f2fb02a | 2014-06-19 10:16:42 -0600 | [diff] [blame] | 118 | * Deprecated ``encrypt_rsa``, ``decrypt_rsa``, ``create_rsa_signature_ctx`` and |
| 119 | ``create_rsa_verification_ctx`` on |
| 120 | :class:`~cryptography.hazmat.backends.interfaces.RSABackend`. |
Paul Kehrer | 1262be2 | 2014-06-26 16:16:50 -0600 | [diff] [blame] | 121 | * Deprecated ``create_dsa_signature_ctx`` and ``create_dsa_verification_ctx`` |
| 122 | on :class:`~cryptography.hazmat.backends.interfaces.DSABackend`. |
Paul Kehrer | bb91c81 | 2014-05-12 15:03:04 -0400 | [diff] [blame] | 123 | |
Paul Kehrer | 9586201 | 2014-05-01 16:48:05 -0500 | [diff] [blame] | 124 | 0.4 - 2014-05-03 |
| 125 | ~~~~~~~~~~~~~~~~ |
Paul Kehrer | 3d4eb6e | 2014-03-27 16:27:31 -0500 | [diff] [blame] | 126 | |
Paul Kehrer | ba98745 | 2014-04-02 17:12:26 -0500 | [diff] [blame] | 127 | * Deprecated ``salt_length`` on |
| 128 | :class:`~cryptography.hazmat.primitives.asymmetric.padding.MGF1` and added it |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 129 | to :class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS`. It will |
Alex Gaynor | 2e49f21 | 2014-07-12 10:58:30 -0700 | [diff] [blame] | 130 | be removed from ``MGF1`` in two releases per our :doc:`/api-stability` |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 131 | policy. |
| 132 | * Added :class:`~cryptography.hazmat.primitives.ciphers.algorithms.SEED` |
| 133 | support. |
Ayrx | 9bea937 | 2014-04-22 21:00:34 +0800 | [diff] [blame] | 134 | * Added :class:`~cryptography.hazmat.primitives.cmac.CMAC`. |
Alex Gaynor | cd58b93 | 2014-05-01 23:11:06 -0700 | [diff] [blame] | 135 | * Added decryption support to |
| 136 | :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKey` |
| 137 | and encryption support to |
| 138 | :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKey`. |
Paul Kehrer | 80950e5 | 2014-05-01 16:48:55 -0500 | [diff] [blame] | 139 | * Added signature support to |
| 140 | :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPrivateKey` |
| 141 | and verification support to |
| 142 | :class:`~cryptography.hazmat.primitives.asymmetric.dsa.DSAPublicKey`. |
Ayrx | 9bea937 | 2014-04-22 21:00:34 +0800 | [diff] [blame] | 143 | |
Paul Kehrer | 9c2a11b | 2014-03-27 13:16:57 -0500 | [diff] [blame] | 144 | 0.3 - 2014-03-27 |
| 145 | ~~~~~~~~~~~~~~~~ |
Matthew Iversen | 69a6fad | 2014-02-25 02:10:44 +1100 | [diff] [blame] | 146 | |
| 147 | * Added :class:`~cryptography.hazmat.primitives.twofactor.hotp.HOTP`. |
David Reid | eea08d9 | 2014-02-25 11:06:09 -0800 | [diff] [blame] | 148 | * Added :class:`~cryptography.hazmat.primitives.twofactor.totp.TOTP`. |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 149 | * Added :class:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA` |
| 150 | support. |
Alex Gaynor | cd58b93 | 2014-05-01 23:11:06 -0700 | [diff] [blame] | 151 | * Added signature support to |
| 152 | :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPrivateKey` |
| 153 | and verification support to |
| 154 | :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKey`. |
Paul Kehrer | 1592e5b | 2014-03-27 14:29:38 -0500 | [diff] [blame] | 155 | * Moved test vectors to the new ``cryptography_vectors`` package. |
Matthew Iversen | 69a6fad | 2014-02-25 02:10:44 +1100 | [diff] [blame] | 156 | |
Paul Kehrer | 7f711ee | 2014-03-03 23:58:45 -0400 | [diff] [blame] | 157 | 0.2.2 - 2014-03-03 |
| 158 | ~~~~~~~~~~~~~~~~~~ |
| 159 | |
Alex Gaynor | 9963cb3 | 2014-07-12 09:35:33 -0700 | [diff] [blame] | 160 | * Removed a constant definition that was causing compilation problems with |
| 161 | specific versions of OpenSSL. |
Paul Kehrer | 7f711ee | 2014-03-03 23:58:45 -0400 | [diff] [blame] | 162 | |
Matthew Iversen | 69a6fad | 2014-02-25 02:10:44 +1100 | [diff] [blame] | 163 | 0.2.1 - 2014-02-22 |
| 164 | ~~~~~~~~~~~~~~~~~~ |
Paul Kehrer | 7f711ee | 2014-03-03 23:58:45 -0400 | [diff] [blame] | 165 | |
Alex Gaynor | cd58b93 | 2014-05-01 23:11:06 -0700 | [diff] [blame] | 166 | * Fix a bug where importing cryptography from multiple paths could cause |
| 167 | initialization to fail. |
Matthew Iversen | 69a6fad | 2014-02-25 02:10:44 +1100 | [diff] [blame] | 168 | |
| 169 | 0.2 - 2014-02-20 |
| 170 | ~~~~~~~~~~~~~~~~ |
| 171 | |
| 172 | * Added :doc:`/hazmat/backends/commoncrypto`. |
| 173 | * Added initial :doc:`/hazmat/bindings/commoncrypto`. |
| 174 | * Removed ``register_cipher_adapter`` method from |
| 175 | :class:`~cryptography.hazmat.backends.interfaces.CipherBackend`. |
| 176 | * Added support for the OpenSSL backend under Windows. |
| 177 | * Improved thread-safety for the OpenSSL backend. |
| 178 | * Fixed compilation on systems where OpenSSL's ``ec.h`` header is not |
| 179 | available, such as CentOS. |
| 180 | * Added :class:`~cryptography.hazmat.primitives.kdf.pbkdf2.PBKDF2HMAC`. |
| 181 | * Added :class:`~cryptography.hazmat.primitives.kdf.hkdf.HKDF`. |
| 182 | * Added :doc:`/hazmat/backends/multibackend`. |
Alex Gaynor | cd58b93 | 2014-05-01 23:11:06 -0700 | [diff] [blame] | 183 | * Set default random for the :doc:`/hazmat/backends/openssl` to the OS |
| 184 | random engine. |
| 185 | * Added :class:`~cryptography.hazmat.primitives.ciphers.algorithms.CAST5` |
| 186 | (CAST-128) support. |
Matthew Iversen | 69a6fad | 2014-02-25 02:10:44 +1100 | [diff] [blame] | 187 | |
| 188 | 0.1 - 2014-01-08 |
| 189 | ~~~~~~~~~~~~~~~~ |
| 190 | |
| 191 | * Initial release. |
| 192 | |
Alex Stapleton | b9df278 | 2014-03-17 08:09:41 +0000 | [diff] [blame] | 193 | .. _`master`: https://github.com/pyca/cryptography/ |