1 files changed, 176 insertions, 2 deletions

diff --git a/lib/crypto/doc/src/notes.xml b/lib/crypto/doc/src/notes.xml
index 21ce2891dc..d81a8ddd87 100644
--- a/lib/crypto/doc/src/notes.xml
+++ b/lib/crypto/doc/src/notes.xml
@@ -4,7 +4,7 @@
 <chapter>
   <header>
     <copyright>
-      <year>1999</year><year>2017</year>
+      <year>1999</year><year>2018</year>
       <holder>Ericsson AB. All Rights Reserved.</holder>
     </copyright>
     <legalnotice>
@@ -31,11 +31,122 @@
   </header>
   <p>This document describes the changes made to the Crypto application.</p>
 
-<section><title>Crypto 4.2.2.2</title>
+<section><title>Crypto 4.3.3</title>
+
+    <section><title>Fixed Bugs and Malfunctions</title>
+      <list>
+        <item>
+          <p>
+	    The RSA options <c>rsa_mgf1_md</c>, <c>rsa_oaep_md</c>,
+	    and <c>rsa_oaep_label</c> were always disabled. They will
+	    now be enabled when a suitable cryptolib is used.</p>
+          <p>
+	    They are still experimental and may change without prior
+	    notice.</p>
+          <p>
+	    Own Id: OTP-15212 Aux Id: ERL-675, PR1899, PR838 </p>
+        </item>
+        <item>
+          <p>
+	    The ciphers <c>aes_ige256</c> and <c>blowfish_cbc</c> had
+	    naming issues in <c>crypto:next_iv/2</c>.</p>
+          <p>
+	    Own Id: OTP-15283</p>
+        </item>
+        <item>
+          <p>
+	    the <c>RSA_SSLV23_PADDING</c> is disabled if LibreSSL is
+	    used as cryptlib. This is due to compilation problems.</p>
+          <p>
+	    This will be investigated further in the future.</p>
+          <p>
+	    Own Id: OTP-15303</p>
+        </item>
+      </list>
+    </section>
+
 
     <section><title>Improvements and New Features</title>
       <list>
         <item>
+          <p>
+	    The supported named elliptic curves are now reported in
+	    <c>crypto:supports/0</c> in a new entry tagged by
+	    <c>'curves'</c>.</p>
+          <p>
+	    The function <c>crypto:ec_curves/0</c> is kept for
+	    compatibility.</p>
+          <p>
+	    Own Id: OTP-14717 Aux Id: OTP-15244 </p>
+        </item>
+        <item>
+          <p>
+	    The typing in the CRYPTO and PUBLIC_KEY applications are
+	    reworked and a few mistakes are corrected.</p>
+          <p>
+	    The documentation is now generated from the typing and
+	    some clarifications are made.</p>
+          <p>
+	    A new chapter on Algorithm Details such as key sizes and
+	    availability is added to the CRYPTO User's Guide.</p>
+          <p>
+	    Own Id: OTP-15134</p>
+        </item>
+        <item>
+          <p>
+	    Support for SHA3 both as a separate hash and in HMAC is
+	    now available if OpenSSL 1.1.1 or higher is used as
+	    cryptolib.</p>
+          <p>
+	    Available lengths are reported in the <c>'hashs'</c>
+	    entry in <c>crypto:supports/0</c> as <c>sha3_*</c>.</p>
+          <p>
+	    Own Id: OTP-15153</p>
+        </item>
+        <item>
+          <p>
+	    The mac algorithm <c>poly1305</c> and the cipher
+	    algorithm <c>chacha20</c> are now supported if OpenSSL
+	    1.1.1 or higher is used as cryptolib.</p>
+          <p>
+	    Own Id: OTP-15164 Aux Id: OTP-15209 </p>
+        </item>
+        <item>
+          <p>
+	    The key exchange Edward curves <c>x25519</c> and
+	    <c>x448</c> are now supported if OpenSSL 1.1.1 or higher
+	    is used as cryptolib.</p>
+          <p>
+	    Own Id: OTP-15240 Aux Id: OTP-15133 </p>
+        </item>
+        <item>
+          <p>
+	    The supported RSA options for sign/verify and
+	    encrypt/decrypt are now reported in
+	    <c>crypto:supports/0</c> in a new entry tagged by
+	    '<c>rsa_opts</c>'.</p>
+          <p>
+	    The exakt set is still experimental and may change
+	    without prior notice.</p>
+          <p>
+	    Own Id: OTP-15260</p>
+        </item>
+        <item>
+          <p>
+	    The cipher <c>aes_ccm</c> is added.</p>
+          <p>
+	    Own Id: OTP-15286</p>
+        </item>
+      </list>
+    </section>
+
+</section>
+
+<section><title>Crypto 4.3.2</title>
+
+    <section><title>Fixed Bugs and Malfunctions</title>
+      <list>
+        <item>
 	    <p> Update the crypto engine functions to handle multiple
 	    loads of an engine. </p> <p><c>engine_load/3/4</c> is
 	    updated so it doesn't add the engine ID to OpenSSLs
@@ -62,6 +173,69 @@
 
 </section>
 
+<section><title>Crypto 4.3.1</title>
+
+    <section><title>Fixed Bugs and Malfunctions</title>
+      <list>
+        <item>
+	    <p>Fixed a node crash in <c>crypto:compute_key(ecdh,
+	    ...)</c> when passing a wrongly typed Others
+	    argument.</p>
+          <p>
+	    Own Id: OTP-15194 Aux Id: ERL-673 </p>
+        </item>
+      </list>
+    </section>
+
+</section>
+
+<section><title>Crypto 4.3</title>
+
+    <section><title>Fixed Bugs and Malfunctions</title>
+      <list>
+        <item>
+          <p>
+	    Removed two undocumented and erroneous functions
+	    (<c>crypto:dh_generate_parameters/2</c> and
+	    <c>crypto:dh_check/1</c>).</p>
+          <p>
+	    Own Id: OTP-14956 Aux Id: ERL-579 </p>
+        </item>
+        <item>
+          <p>
+	    Fixed bug causing VM crash if doing runtime upgrade of a
+	    crypto module built against OpenSSL older than 0.9.8h.
+	    Bug exists since OTP-20.2.</p>
+          <p>
+	    Own Id: OTP-15088</p>
+        </item>
+      </list>
+    </section>
+
+
+    <section><title>Improvements and New Features</title>
+      <list>
+        <item>
+          <p>
+	    A new <c>rand</c> plugin algorithm has been implemented
+	    in <c>crypto</c>, that is: <c>crypto_cache</c>. It uses
+	    strong random bytes as randomness source and caches them
+	    to get good speed. See <c>crypto:rand_seed_alg/1</c>.</p>
+          <p>
+	    Own Id: OTP-13370 Aux Id: PR-1573 </p>
+        </item>
+        <item>
+          <p>
+	    Diffie-Hellman key functions are re-written with the
+	    EVP_PKEY api.</p>
+          <p>
+	    Own Id: OTP-14864</p>
+        </item>
+      </list>
+    </section>
+
+</section>
+
 <section><title>Crypto 4.2.2.1</title>
 
     <section><title>Fixed Bugs and Malfunctions</title>