From 8ccd3a8a89d95ae0613679ba7b394a4f87699e12 Mon Sep 17 00:00:00 2001 From: Jay Berkenbilt Date: Sat, 30 Apr 2022 16:05:28 -0400 Subject: Mark weak encryption with API changes (fixes #576) --- manual/release-notes.rst | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) (limited to 'manual/release-notes.rst') diff --git a/manual/release-notes.rst b/manual/release-notes.rst index b5e4e150..8a90895c 100644 --- a/manual/release-notes.rst +++ b/manual/release-notes.rst @@ -62,6 +62,10 @@ For a detailed list of changes, please see the file - The default json output version when :qpdf:ref:`--json` is specified has been changed from ``1`` to ``latest``. + - The :qpdf:ref:`--allow-weak-crypto` flag is now mandatory when + explicitly creating files with weak cryptographic algorithms. + See :ref:`weak-crypto` for a discussion. + - API: breaking changes - Remove @@ -73,6 +77,19 @@ For a detailed list of changes, please see the file ``QPDFNumberTreeObjectHelper`` constructors that don't take a ``QPDF&`` argument. + - Intentionally break API to call attention to operations that + write files with insecure encryption: + + - Remove pre qpdf-8.4.0 encryption API methods from ``QPDFWriter`` + and their corresponding C API functions + + - Add ``Insecure`` to the names of some ``QPDFWriter`` methods + and ``_insecure`` to the names of some C API functions without + otherwise changing their behavior + + - See :ref:`breaking-crypto-api` for specific details, and see + :ref:`weak-crypto` for a general discussion. + - Library Enhancements - Support for more fluent programming with ``QPDFObjectHandle``. -- cgit v1.2.3-54-g00ecf