Lines Matching refs:and
3 - Signatures computations and verifications are now way faster on
9 `crypto_core_ed25519_sub()` and `crypto_core_ed25519_from_uniform()`
11 - `crypto_sign_open()`, `crypto_sign_verify_detached() and
25 - Argon2 and scrypt are slightly faster on Linux.
30 without any changes, and `pwhash()` can still compute Argon2i hashes
33 authenticated, and didn't seem to be used by any opensource project.
38 - The Javascript and Webassembly versions have been merged, and the
40 Webassembly code is loaded and compiled.
45 - iOS binaries should now be compatible with WatchOS and TVOS.
47 @facekapow and @pepyakin who helped to make it happen.
48 - Internal consistency checks failing and primitives used with
56 - `*_MESSAGEBYTES_MAX` macros (and the corresponding
76 - Due to popular demand, base64 encoding (`sodium_bin2base64()`) and
79 and multi-part messages.
80 - The `sodium_pad()` and `sodium_unpad()` helper functions have been
104 the algorithm and can verify both Argon2i and Argon2id hashed passwords.
116 - New constants and related accessors have been added for Scrypt and
121 - `crypto_secretbox`, `crypto_box` and `crypto_aead` now offer
124 signature and signature verification.
125 - AVX2 implementations of Salsa20 and ChaCha20 have been added. They
131 - Siphash with a 128-bit output has been implemented, and is
134 keys for all constructions. This improves code clarity and can prevent keys
153 - `sodium_init()` is now thread-safe, and can be safely called multiple
156 platform 24, but without breaking compatibility with platforms 16 and
166 optimized implementations, and uses pepper_49 by default.
168 Changes have been made to produce smaller code, and the default heap
183 - A detached API was added to the ChaCha20-Poly1305 and AES256-GCM
185 - The Argon2i password hashing function was added, and is accessible
186 directly and through a new, high-level `crypto_pwhash` API. The scrypt
214 `crypto_box_detached()`, `crypto_box_beforenm()`, `crypto_box()`, and
217 merged in, and is automatically used on CPUs supporting the AVX
219 - An SSE2 optimized implementation of Poly1305 was added, and is
221 - An SSSE3 optimized implementation of ChaCha20 was added, and is
224 - New helper functions have been added: `sodium_is_zero()` and
231 Intel platforms. `crypto_generichash()` is now faster than MD5 and SHA1
244 `crypto_onetimeauth_poly1305_implementation_name()` and
246 - `sodium_compare()` now works as documented, and compares numbers
250 - `sodium_runtime_has_ssse3()` and `sodium_runtime_has_sse41()` have
257 for a VRP bug on gcc/armv7 was added, and the library can now be compiled
263 a CPU with the aesni and pclmul extensions, and is accessible via the
267 - QNX and CloudABI are now supported.
269 - ChaCha20 with an extended (96 bit) nonce and a 32-bit counter has
271 crypto_stream_chacha20_ietf_xor() and crypto_stream_chacha20_ietf_xor_ic().
274 crypto_aead_chacha20poly1305_ietf_encrypt() and
286 - crypto_generichash_statebytes(), crypto_auth_*_statebytes() and
294 and randombytes_close() can also be NULL pointers if they are not
298 - crypto_box_seal() and crypto_box_seal_open() have been added.
302 - The _easy and _detached APIs now support precalculated keys;
304 crypto_box_detached_afternm() and crypto_box_open_detached_afternm()
308 - crypto_sign_open() and crypto_sign_edwards25519sha512batch_open()
315 - The iOS target now includes armv7s and arm64 optimized code, as well
316 as i386 and x86_64 code for the iOS simulator.
325 - crypto_secretbox_detached() now supports overlapping input and output
332 - The API and ABI are now stable. New features will be added, but
340 compilation, readability and portability changes have been made and the
346 sodium_malloc() and sodium_allocarray(). These functions add guard
350 sodium_mprotect_noaccess(), sodium_mprotect_readonly() and
353 crypto_sign_ed25519_pk_to_curve25519() and
355 keys for signature and encryption.
356 - The seed and the public key can be extracted from an ed25519 key
357 using crypto_sign_ed25519_sk_to_seed() and crypto_sign_ed25519_sk_to_pk().
373 - New API: crypto_sign_detached() and crypto_sign_verify_detached()
374 to produce and verify ed25519 signatures without having to duplicate
378 Mainly useful for the JavaScript target and embedded systems.
387 - The _easy API does not require any heap allocations any more and
390 allocate and will not allocate heap memory ever.
391 - crypto_box and crypto_secretbox have a new _detached API to store
392 the authentication tag and the encrypted message separately.
397 - New macros and functions for recommended crypto_pwhash_* parameters
402 - crypto_stream_chacha20_xor_ic() and crypto_stream_salsa20_xor_ic()
415 in memory before storing sensitive data, and to zero them before
417 - High-level wrappers for crypto_box and crypto_secretbox
418 (crypto_box_easy and crypto_secretbox_easy) can be used to avoid
421 to derive a key from a password, and for password storage.
422 - Salsa20 and ed25519 implementations now support overlapping
425 architectures and msys2 are available.
427 poly1305-donna32 and poly1305-donna64 implementations.
429 - On OpenBSD and Bitrig, arc4random() is used instead of reading
432 - sha256 and sha512 now have a streaming interface.
433 - hmacsha256, hmacsha512 and hmacsha512256 now support keys of
434 arbitrary length, and have a streaming interface.
448 - Missing scalarmult_curve25519 and stream_salsa20 constants are now exported
452 - crypto_sign_seedbytes() and crypto_sign_SEEDBYTES were added.
465 - The Android and iOS cross-compilation script have been improved.
475 - further cleanups and enhanced compatibility with non-C99 compilers.
478 - Most constants and operations are now available as actual functions
481 variable output size, and a streaming API. Currently implemented using
486 (poly1305_53) and ed25519 (ed25519_ref10) are available. Optionally calling
491 - A whole bunch of cleanups and portability enhancements.