All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
0.3.0 - 2023-03-08
- Added experimental support for CMake builds. Traditional GNU Autotools builds (
./configure
andmake
) remain fully supported. - Usage examples: Added a recommended method for securely clearing sensitive data, e.g., secret keys, from memory.
- Tests: Added a new test binary
noverify_tests
. This binary runs the tests without some additional checks present in the ordinarytests
binary and is thereby closer to production binaries. Thenoverify_tests
binary is automatically run as part of themake check
target.
- Fixed declarations of API variables for MSVC (
__declspec(dllimport)
). This fixes MSVC builds of programs which link against a libsecp256k1 DLL dynamically and use API variables (and not only API functions). Unfortunately, the MSVC linker now will emit warningLNK4217
when trying to link against libsecp256k1 statically. Pass/ignore:4217
to the linker to suppress this warning.
- Forbade cloning or destroying
secp256k1_context_static
. Create a new context instead of cloning the static context. (If this change breaks your code, your code is probably wrong.) - Forbade randomizing (copies of)
secp256k1_context_static
. Randomizing a copy ofsecp256k1_context_static
did not have any effect and did not provide defense-in-depth protection against side-channel attacks. Create a new context if you want to benefit from randomization.
- Removed the configuration header
src/libsecp256k1-config.h
. We recommend passing flags to./configure
orcmake
to set configuration options (see./configure --help
orcmake -LH
). If you cannot or do not want to use one of the supported build systems, pass configuration flags such as-DSECP256K1_ENABLE_MODULE_SCHNORRSIG
manually to the compiler (see the fileconfigure.ac
for supported flags).
Due to changes in the API regarding secp256k1_context_static
described above, the ABI is not compatible with previous versions.
0.2.0 - 2022-12-12
- Added usage examples for common use cases in a new
examples/
directory. - Added
secp256k1_selftest
, to be used in conjunction withsecp256k1_context_static
. - Added support for 128-bit wide multiplication on MSVC for x86_64 and arm64, giving roughly a 20% speedup on those platforms.
- Enabled modules
schnorrsig
,extrakeys
andecdh
by default in./configure
. - The
secp256k1_nonce_function_rfc6979
nonce function, used by default bysecp256k1_ecdsa_sign
, now reduces the message hash modulo the group order to match the specification. This only affects improper use of ECDSA signing API.
- Deprecated context flags
SECP256K1_CONTEXT_VERIFY
andSECP256K1_CONTEXT_SIGN
. UseSECP256K1_CONTEXT_NONE
instead. - Renamed
secp256k1_context_no_precomp
tosecp256k1_context_static
. - Module
schnorrsig
: renamedsecp256k1_schnorrsig_sign
tosecp256k1_schnorrsig_sign32
.
Since this is the first release, we do not compare application binary interfaces. However, there are earlier unreleased versions of libsecp256k1 that are not ABI compatible with this version.
0.1.0 - 2013-03-05 to 2021-12-25
This version was in fact never released. The number was given by the build system since the introduction of autotools in Jan 2014 (ea0fe5a5bf0c04f9cc955b2966b614f5f378c6f6). Therefore, this version number does not uniquely identify a set of source files.