I'm happy to announce a new release of GNU Nettle, a low-level cryptographics library. This is mainly a bug fix release, with few new features.

The Nettle home page can be found at https://www.lysator.liu.se/~nisse/nettle/, and the manual at https://www.lysator.liu.se/~nisse/nettle/nettle.html.

NEWS for the Nettle 3.2 release

Bug fixes:

* The SHA3 implementation is updated according to the FIPS 202 standard. It is not interoperable with earlier versions of Nettle. Thanks to Nikos Mavrogiannopoulos. To easily differentiate at compile time, sha3.h defines the constant NETTLE_SHA3_FIPS202.

* Fix corner-case carry propagation bugs affecting elliptic curve operations on the curves secp_256r1 and secp_384r1 on certain platforms, including x86_64. Reported by Hanno Böck.

New features:

* New functions for RSA private key operations, identified by the "_tr" suffix, with better resistance to side channel attacks and to hardware or software failures which could break the CRT optimization. See the Nettle manual for details. Initial patch by Nikos Mavrogiannopoulos.

* New functions nettle_version_major, nettle_version_minor, as a run-time variant of the compile-time constants NETTLE_VERSION_MAJOR and NETTLE_VERSION_MINOR.

Optimizations:

* New ARM Neon implementation of the chacha stream cipher.

Miscellaneous:

* ABI detection on mips, with improved default libdir location. Contributed by Klaus Ziegler.

* Fixes for ARM assembly syntax, to work better with the clang assembler. Thanks to Jukka Ukkonen.

* Disabled use of ifunc relocations for fat builds, to fix problems most easily triggered by using dlopen RTLD_NOW.

The shared library names are libnettle.so.6.2 and libhogweed.so.4.2, with sonames still libnettle.so.6 and libhogweed.so.4. It is intended to be fully binary compatible with nettle-3.1.

https://ftp.gnu.org/gnu/nettle/nettle-3.2.tar.gz ftp://ftp.gnu.org/gnu/nettle/nettle-3.2.tar.gz https://www.lysator.liu.se/~nisse/archive/nettle-3.2.tar.gz

Happy hacking, /Niels Möller