From 8c210b4e53b8566faea7ff0a175ad323236dd5d2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Niels=20M=C3=B6ller?= <nisse@lysator.liu.se>
Date: Wed, 14 Mar 2018 22:12:32 +0100
Subject: [PATCH] Update NEWS file.

---
 NEWS | 17 ++++++++++++++---
 1 file changed, 14 insertions(+), 3 deletions(-)

diff --git a/NEWS b/NEWS
index 77e3d5c6..18f04111 100644
--- a/NEWS
+++ b/NEWS
@@ -5,7 +5,7 @@ NEWS for the Nettle 3.5 release
 	* Nettle's gcm_crypt will now call the underlying block cipher
 	  to process more than one block at a time. This is not a
 	  change to the documented behavior, but unfortunately breaks
-	  assumptions accidentally made in gnutls, up to and including
+	  assumptions accidentally made in GnuTLS, up to and including
 	  version 3.6.1.
 
 	Bug fixes:
@@ -19,6 +19,9 @@ NEWS for the Nettle 3.5 release
 	  octet per block cipher operation), contributed by Dmitry
 	  Eremin-Solenikov.
 
+	* Support for CMAC (RFC 4493), contributed by Nikos
+	  Mavrogiannopoulos.
+
 	Optimizations:
 
 	* Improved performance of the x86_64 AES implementation using
@@ -32,8 +35,16 @@ NEWS for the Nettle 3.5 release
 	  Extension to also handle GCM mode efficiently contributed
 	  by Nikos Mavrogiannopoulos.
 
-	* New x86_64 implementation of sha1, for processors supporting
-	  the sha_ni instructions.
+	* New x86_64 implementation of sha1 and sha256, for processors
+	  supporting the sha_ni instructions. Speedup of 3-5 times on
+	  affected processors.
+
+	* Improved parameters for the precomputation of tables used
+	  for ecc signatures. Roughly 10%-15% speedup of the ecdsa
+	  sign operation using the secp_256r1, secp_384r1 and
+	  secp_521r1 curves, and 25% speedup of ed25519 sign
+	  operation, benchmarked on x86_64. Table sizes unchanged,
+	  around 16 KB per curve.
 
 	Miscellaneous:
 
-- 
GitLab