news: note the addition of ECX and SHAKE256 to the FIPS provider as non-approved...

author Pauli <paul.dale@oracle.com>

Wed, 15 Apr 2020 21:55:17 +0000 (07:55 +1000)

committer Pauli <paul.dale@oracle.com>

Fri, 17 Apr 2020 09:51:37 +0000 (19:51 +1000)
author Pauli <paul.dale@oracle.com>
Wed, 15 Apr 2020 21:55:17 +0000 (07:55 +1000)
committer Pauli <paul.dale@oracle.com>
Fri, 17 Apr 2020 09:51:37 +0000 (19:51 +1000)
diff --git a/NEWS.md b/NEWS.md

index 9f29a59323fb8e80baaa9c670f1646c2a9a13b2e..9f18f416f889daf31f63575e09b81b9bd0ea8e8d 100644 (file)
--- a/NEWS.md
+++ b/NEWS.md
@@ -21,6 +21,9 @@ OpenSSL 3.0
  
  ### Major changes between OpenSSL 1.1.1 and OpenSSL 3.0 [under development] ###
  
+  * The X25519, X448, Ed25519, Ed448 and SHAKE256 algorithms are included in
+    the FIPS provider.  None have the "fips=yes" property set and, as such,
+    will not be accidentially used.
    * The algorithm specific public key command line applications have
      been deprecated.  These include dhparam, gendsa and others.  The pkey
      alternatives should be used intead: pkey, pkeyparam and genpkey.
author	Pauli <paul.dale@oracle.com>
	Wed, 15 Apr 2020 21:55:17 +0000 (07:55 +1000)
committer	Pauli <paul.dale@oracle.com>
	Fri, 17 Apr 2020 09:51:37 +0000 (19:51 +1000)