cloudflare/circl v1.6.4

CIRCL v1.6.4

Repository: cloudflare/circl

Tag: v1.6.4

Published: 2026-06-22T14:29:21Z

Prerelease: no

Release notes:

What's Changed

• Fix typo: it's to its by @04cb in https://github.com/cloudflare/circl/pull/588
• ci: Bump Go version to 1.26 by @armfazh in https://github.com/cloudflare/circl/pull/591
• tss/rsa: polynomial evaluation using Horner's method by @armfazh in https://github.com/cloudflare/circl/pull/590
• zk/qndleq: Ensure large security parameter by @armfazh in https://github.com/cloudflare/circl/pull/592
• sign/bls: rejects aggregated signatures built with duplicated messages. by @armfazh in https://github.com/cloudflare/circl/pull/595
• Bump golang.org/x/crypto from 0.30.0 to 0.45.0 by @dependabot[bot] in https://github.com/cloudflare/circl/pull/585
• tss/rsa: avoiding overflow in lambda calculation with big.Int by @armfazh in https://github.com/cloudflare/circl/pull/598
• deps: Update CIRCL version in code generators. by @armfazh in https://github.com/cloudflare/circl/pull/599
• ci: add Semgrep OSS scanning workflow by @hrushikeshdeshpande in https://github.com/cloudflare/circl/pull/601
• zk/qndleq: Fixes challenge calculation by @armfazh in https://github.com/cloudflare/circl/pull/596
• sign/bls: Check that signature cannot be the identity point by @armfazh in https://github.com/cloudflare/circl/pull/603
• ml-dsa: Don't use tr pointer by @bwesterb in https://github.com/cloudflare/circl/pull/606
• ecc/bls12381: affinize must handle identity elements. by @armfazh in https://github.com/cloudflare/circl/pull/604
• pki: check pem.Decode returned nil block. by @z9z in https://github.com/cloudflare/circl/pull/607
• abe/cpabe/tkn20: fix AND-gate secret sharing. by @cjpatton in https://github.com/cloudflare/circl/pull/610
• hpke: fix verifyPSKInputs() to match spec. by @cjpatton in https://github.com/cloudflare/circl/pull/612
• hpke: Warn about nonce misuse during marshaling by @cjpatton in https://github.com/cloudflare/circl/pull/613
• hpke: don't panic when parsing on hybrid keys/ciphertexts. by @cjpatton in https://github.com/cloudflare/circl/pull/614
• blindsign/blindrsa: reject non-canonical signatures. by @cjpatton in https://github.com/cloudflare/circl/pull/615
• blindsign/blindrsa: reject message unless co-prime with modulus by @cjpatton in https://github.com/cloudflare/circl/pull/616
• oprf: reject identity element as public key. by @cjpatton in https://github.com/cloudflare/circl/pull/619
• Add AGENTS.md and REVIEW.md for contributor and AI agent guidance by @dotjs in https://github.com/cloudflare/circl/pull/620
• ecc/bls12381: check input length for infinity encoding in SetBytes. by @bwesterb in https://github.com/cloudflare/circl/pull/618
• abe/cpabe/tkn20: bound recursion depth when parsing policies. by @cjpatton in https://github.com/cloudflare/circl/pull/622
• abe/cpabe/tkn20: reject ciphertexts with trailing data. by @cjpatton in https://github.com/cloudflare/circl/pull/621
• abe/cpabe/tkn20: handle short ciphertexts as errors. by @cjpatton in https://github.com/cloudflare/circl/pull/611
• abe/cpabe/tkn20: enforce wire count matches policy. by @cjpatton in https://github.com/cloudflare/circl/pull/624
• abe/cpabe/tkn20: handle malformed ciphertext header. by @cjpatton in https://github.com/cloudflare/circl/pull/623
• abe/cpabe/tkn20: reject circuits with invalid topologies. by @cjpatton in https://github.com/cloudflare/circl/pull/625
• Release CIRCL v1.6.4 by @cjpatton in https://github.com/cloudflare/circl/pull/626

New Contributors

• @04cb made their first contribution in https://github.com/cloudflare/circl/pull/588
• @z9z made their first contribution in https://github.com/cloudflare/circl/pull/607
• @dotjs made their first contribution in https://github.com/cloudflare/circl/pull/620

Full Changelog: https://github.com/cloudflare/circl/compare/v1.6.3...v1.6.4