Releases: aws/aws-lc
Releases · aws/aws-lc
AWS-LC-FIPS v2.0.6
What's Changed
- Backport: Fix issue with iOS FIPS builds. Requires -DCMAKE_SYSTEM_NAME=iOS by @skmcgrail in #1417
- FIPS 2.0.6 release version number update by @justsmth in #1418
Full Changelog: AWS-LC-FIPS-2.0.5...AWS-LC-FIPS-2.0.6
Contributors
skmcgrail and justsmth
Assets 2
AWS-LC-FIPS v2.0.5
Contributors
justsmth
Assets 2
Release v1.20.0
What's Changed
- TrouSerS integration by @justsmth in #1364
- Fix delocator and FIPS static build prefixing behaviors by @skmcgrail in #1342
- Add HMAC init benchmark by @andrewhop in #1370
- Add option to run speed for specified milliseconds by @andrewhop in #1368
- Add assertions and unify tmpfile uniqueptr by @samuel40791765 in #1372
- Add DH groups from RFC 7919 to support MySQL 8.1 by @samuel40791765 in #1371
- Add back support for EVP_PKEY_HMAC by @samuel40791765 in #1324
- Update poly_compress and polyvec_compress to prevent the compiler from using DIV by @brian-jarvis-aws in #1376
- Fix memory leaks in speed.cc by @andrewhop in #1377
- Fix case issue with sha-224 in speed tool by @torben-hansen in #1379
- Fix speed tool timeout flag by @justsmth in #1382
- check/assert hmac_update success by @justsmth in #1383
- Upstream merge 2024 01 02 by @nebeid in #1374
- Add an integration test for NTP by @andrewhop in #1369
- Add an additional test that HAProxy is built with AWS-LC by @andrewhop in #1386
- Add CMake GitHub Actions CI by @skmcgrail in #1367
- Always run 'apt-get update' before 'installing' by @andrewhop in #1391
- Initialize ECCurveTest values to null instead of relying on uninitialized value from default constructor by @andrewhop in #1389
- Staging v1.20.0 release by @andrewhop in #1390
Full Changelog: v1.19.0...v1.20.0
Contributors
skmcgrail, samuel40791765, and 5 other contributors
Assets 2
AWS-LC-FIPS v2.0.4
What's Changed
- Apply patch from Kyber reference code which updates poly_compress and… by @geedo0 in #1381
- [Backport] Provide a compile option to disable AVX512-specific optimizations. by @skmcgrail in #1380
- FIPS 2.0.4 release version number update by @andrewhop in #1388
Full Changelog: AWS-LC-FIPS-2.0.3...AWS-LC-FIPS-2.0.4
Contributors
skmcgrail, geedo0, and andrewhop
Assets 2
Release v1.19.0
What's Changed
- Implement support for EVP_chacha20_poly1305 by @geedo0 in #1311
- Read fips scope marker addresses using adrp instead of adr to increase reach by @torben-hansen in #1332
- Expand PEM/X509 test coverage by @justsmth in #1327
- Update OCSP responder integration test timeout by @samuel40791765 in #1341
- Relax test pinging unauthorized OCSP responder by @samuel40791765 in #1343
- Factor out the machine-optimised backend for 25519 algorithms by @torben-hansen in #1340
- Add support and CI for building with librelp by @samuel40791765 in #1317
- Dockerfile and structure change for SAW proofs on X86_64 by @pennyannn in #1345
- Enable 25519 s2n-bignum backend for FIPS build by @torben-hansen in #1344
- More caution with 'rm -rf' by @justsmth in #1346
- Upstream merge 2023-11-30 by @dkostic in #1331
- Mark bcm_redirector functions as local by @skmcgrail in #1352
- Enable Arm SHA384 proofs in AWS-LC CI by @pennyannn in #1348
- Initialize min/max use_default values in SSL_CTX by @WillChilds-Klein in #1350
- Add EVP_chacha20_poly1305() to speed.cc by @geedo0 in #1339
- Improve tcpdump support + integ test by @justsmth in #1351
- Fix accidental deletion in f3e49b0 by @WillChilds-Klein in #1357
- Add gRPC integration tests by @andrewhop in #1265
- Add helper functions needed for NTP by @andrewhop in #1355
- Add print helper functions for RSA and DSA by @andrewhop in #1354
- Update function to avoid division by @WillChilds-Klein in #1360
- tcpdump CI - 'apt-get update' before install by @justsmth in #1363
- Upstream merge 2023 12 11 by @nebeid in #1356
- Bump AWSLC_API_VERSION for EVP_chacha20_poly1305 by @andrewhop in #1358
- Fix issue with older CMake when building FIPS static using Ninja buid system by @skmcgrail in #1362
Full Changelog: v1.18.0...v1.19.0
Contributors
skmcgrail, WillChilds-Klein, and 8 other contributors
Assets 2
Release AWS-LC-FIPS v2.0.3
What's Changed
- Use uint8_t not u_int8_t by @samuel40791765 in #1301
- Backport SSL_CTX_get_security_level / SSL_CTX_set_security_level symbols by @skmcgrail in #1334
- Backport "Give BIO an ex_data" for Postgres by @samuel40791765 in #1335
- Backport Perl Compat Fix and Division Fix to fips-2022-11-02, Bump Version to 2.0.3 by @skmcgrail in #1366
Full Changelog: AWS-LC-FIPS-2.0.2...AWS-LC-FIPS-2.0.3
Contributors
skmcgrail and samuel40791765
Assets 2
Release: v1.18.0
What's Changed
- Upstream merge 2023-11-20 by @torben-hansen in #1315
- Wire up s2n-bignum Ed25519 backend by @torben-hansen in #1309
- Allow 0 byte read/write in SSL_{read,write}_ex by @WillChilds-Klein in #1316
- Increment session hit counter for ticket resumptions by @WillChilds-Klein in #1320
- Add back SSL_use_certificate_chain_file by @samuel40791765 in #1312
- Log symbol name for fips scope assertion error by @torben-hansen in #1321
- Add support for building with pkgconfig by @samuel40791765 in #1310
- Docker images for loongarch64, ppc64, ppc64le, and riscv64 by @justsmth in #1168
- Use mkstemp instead of tmpname when available by @samuel40791765 in #1325
- CI for Build/Testing on PPC64BE by @justsmth in #1318
- Improve decision logic for s2n-bignum implementation by @torben-hansen in #1323
- Add null-check for input args in SSL_{read|write}_ex by @dkostic in #1326
- CI for PPC32 Cross build/test by @justsmth in #1329
- Give BIO an ex_data by @samuel40791765 in #1328
- Return 0 if using default proto min/max by @WillChilds-Klein in #1322
- Fix expected error string for Postgres integration by @samuel40791765 in #1330
- Improve backwards compatability for the TLS transfer parser by @torben-hansen in #1337
- Prepare release 1.18.0 by @justsmth in #1336
Full Changelog: v1.17.4...v1.18.0
Contributors
WillChilds-Klein, samuel40791765, and 3 other contributors
Assets 2
Release: v1.17.4
What's Changed
- Add HybridKeyShare support for SecP256r1Kyber768Draft00 and X25519Kyber768Draft00 by @alexw91 in #1201
- Refactor ED25519_sign into hw and nohw backend by @torben-hansen in #1276
- Add back OCSP integration test executing by @samuel40791765 in #1303
- Refactor ED25519_verify into hw and nohw backend by @torben-hansen in #1305
- Add check for sk_X509_push by @samuel40791765 in #1304
- Upstream merge 2023-11-10 by @samuel40791765 in #1302
- Fix-up curve25519 code to prepare for s2n-bignum by @torben-hansen in #1306
- Fix bn_assert_fits_in_bytes for big-endian by @justsmth in #1258
- Include Codecov in CI by @justsmth in #1307
- Add integration ci for Monit by @samuel40791765 in #1286
- Use OPENSSL_DEPRECATED by @justsmth in #1285
- Silence warning on CMP0116 by @justsmth in #1284
- Add BNAssertTest by @justsmth in #1267
- Update s2n-bignum subtree 2023-11-15 by @torben-hansen in #1308
- Update s2n-bignum subtree 2023-11-19 by @torben-hansen in #1314
- Improve Codecov reporting by @justsmth in #1313
- Bump release version number string to 1.17.4 by @dkostic in #1319
Full Changelog: v1.17.3...v1.17.4
Contributors
alexw91, samuel40791765, and 3 other contributors
Assets 2
Release v1.17.3
What's Changed
- Upstream merge 2023-11-01 by @justsmth in #1277
- Upstream merge 2023-11-01 (part 2) by @justsmth in #1278
- Only update thread_states_list if freed state is head when prev is NULL by @skmcgrail in #1294
- Add PPC64BE to module wrapper by @andrewhop in #1295
- Revert "Give up on qsort for sk_FOO_sort" by @samuel40791765 in #1299
- Update the integrity hash calculation in bcm.c to handle big/little endian platforms by @andrewhop in #1300
Full Changelog: v1.17.2...v1.17.3
Contributors
skmcgrail, samuel40791765, and 2 other contributors
Assets 2
Release AWS-LC-FIPS v2.0.2
What's Changed
- [fips-2022-11-02] Only update thread_states_list if freed state is head when prev is NULL by @skmcgrail in #1298
Full Changelog: AWS-LC-FIPS-2.0.1...AWS-LC-FIPS-2.0.2
Contributors
skmcgrail