Releases: aws/aws-lc-rs
Releases · aws/aws-lc-rs
aws-lc-rs v1.12.0
What's Changed
- Update aws-lc-fips-sys to AWS-LC FIPS v3.0 🎉 — @justsmth in #626
- Please see our blog post for information about the numerous improvements!
- If your project requires FIPS compliance, please consult your local FIPS experts about whether you should upgrade.
- If needed, see the Cargo Book section on Specifying Dependencies for guidance on how to remain on an older versions of aws-lc-rs.
- The APIs for ML-KEM, kbkdf and sskdf are now stable — @justsmth in #628
- Please migrate any use of these algorithms from the
unstablemodule to the new stable APIs. - See our updated API documentation.
- Please migrate any use of these algorithms from the
- Support for AES-192 — @justsmth in #622
- Add ability to prepare the next operation and its associated nonce for
OpeningKeyandSealingKey— @skmcgrail in #619 - Update aws-lc-sys to AWS-LC v1.41.1 — @justsmth in #627
Build improvements
- Fix
i686-pc-windows-gnuexternal bindgen by @justsmth in #621 - Warn unsupported compiler on FIPS build by @justsmth in #618
- Improve bindgen-cli error handling by @justsmth in #625
Issues being resolved
- Build failure with gcc-15 — #623
- Linkage error when cross-compiling for
i686-pc-windows-gnu— #620 aws-lc/crypto/err/err.c:186:17: error: implicit declaration of function ‘strdup’ — #610::aead::{SealingKey, OpeningKey}how to prepend nonce to packet? — #570
Other merged PRs
- Include new AWS-LC header files for FIPS bindings. by @justsmth in #629
- Fix rustls integ test by @justsmth in #631
- Fix s2n-quic integ test by @justsmth in #630
- CI cleanup by @justsmth in #634
- Update Readme on FIPS version changes by @justsmth in #636
Full Changelog: v1.11.1...v1.12.0
Contributors
skmcgrail and justsmth
Assets 2
aws-lc-rs v1.11.1
What's Changed
Build Improvements
- Set GOCACHE under OUT_DIR by @justsmth in #603
- Fix for aarch64-apple-ios by @justsmth in #604
- Handle spaces in source/build paths by @justsmth in #608
Issues being resolved
- #581 - Support importing RSA parameters manually for encryption with Pkcs1PublicEncryptingKey
- #599 - ffile-prefix-map argument not quoted
- #600 - All version of aws-lc-fips-sys fail to build docs on docs.rs
- #602 - Build fail for aarch64-apple-ios
Other Merged PRs
- Use nightly toolchain for clippy by @justsmth in #598
- MSRV cleanup; Remove mirai-annotations dependency by @justsmth in #609
- Fix latest clippy lints by @justsmth in #606
- Update to aws-lc-rs v1.11.1 by @justsmth in #611
- Bump aws-lc-fips-sys to 0.12.15 by @justsmth in #612
- Bump aws-lc-sys to v0.23.1 by @justsmth in #613
New Contributors
Full Changelog: v1.11.0...v1.11.1
Contributors
Vadmeme and justsmth
Assets 2
aws-lc-rs v1.11.0
What's Changed
- AES ECB mode support by @skmcgrail in #597
- Support for AES CFB (128-bit) mode by @skmcgrail in #585
- Add support for Ed25519KeyPair::generate by @skmcgrail in #576
- Update aws-lc-sys to AWS-LC v1.39.0. See also the release notes for v1.38.0 and v1.37.0.
Build Improvements
- Support FIPS feature w/ old compilers by @justsmth in #564
- Cleanup build scripts by @justsmth in #561
- Fix MSVC compiler checks by @justsmth in #560
- Disable
-Woverriding-t-optionby @justsmth in #584 - Use -pthread, and on more platforms by @justsmth in #558
- Improve handling/logging for Android builds by @justsmth in #563
- Also aws-lc-sys -Wno-overriding-t-option by @justsmth in #596
Issues being resolved
- #572 - Add
Ed25519KeyPair::generate(&rng)function - #574 - Compilation fails for release mode on
powerpc64le-unknown-linux-gnu - #575 - [Feature Request] Support CFB mode for AES
- #587 - error: failed to run custom build command for aws-lc-fips-sys v0.12.13
- #591 - New release for aws-lc-sys, please
Other Merged PRs
- Bump aws-lc-fips-sys to v0.12.13 by @justsmth in #567
- CI checks on license and metadata by @justsmth in #552
- Enable C-std (C11) test for windows by @justsmth in #555
- Fix latest clippy lints by @justsmth in #568
- Update aws-lc-sys/aws-lc to v1.38.0 by @skmcgrail in #579
- Bump aws-ls-rs to v1.11.0 by @justsmth in #595
Full Changelog: v1.10.0...v1.11.0
Contributors
skmcgrail and justsmth
Assets 2
aws-lc-rs v1.10.0
What's Changed
- Added support for ML-KEM 512, 768, and 1024 by @skmcgrail in #539
- This is currently in the
unstable::kemmodule, but will be moved tokemsoon.
- This is currently in the
- Updated
aws-lc-systo AWS-LC v1.36.1 (from v1.34.2). (See also release notes from AWS-LC v1.36.0 and v1.35.0.)- Improved RSA performance (Linux): aws/aws-lc#1273
- Improved EC performance (MacOS): aws/aws-lc#1901
Build Improvements
- Improved consistency between CC and CMake builds by @justsmth in #525
- Support cross compiling with prebuilt NASM by @justsmth in #528
Issues Being Resolved
- Cross-compiling Linux->Windows fails with prebuilt NASM: #524
- 1.9.0 compilation fails on old libc (centos) due to atomics missing: #531
Other Merged PRs
- Update FreeBSD version to 14.1 in cross compiling workflow by @yonas in #536
- Fix Rustls integ test by @justsmth in #529
- Filter s2n-bignum symbols with prefix p256_montjscalarmul by @torben-hansen in #540
- Fix pregeneration of bindings by @justsmth in #541
- Special configs for Clippy by @justsmth in #542
- Add Ubuntu 18.04 image for testing older GCC by @justsmth in #547
- Update CI runners for MacOS by @justsmth in #548
- Update aws-lc-sys v0.22.0, aligns w/ AWS-LC v1.36.0 by @justsmth in #543
- Fix FreeBSD build not targetting release 13.4 by @yonas in #550
- Update aws-lc-fips-sys v0.12.12 align w/ AWS-LC-FIPS v2.0.15 by @justsmth in #549
- Align aws-lc-sys v0.22.0 w/ AWS-LC v1.36.1 by @justsmth in #553
- Update User Guide pregen platforms by @justsmth in #554
- Bump aws-lc-rs to v1.10.0 by @justsmth in #551
New Contributors
Full Changelog: v1.9.0...v1.10.0
Contributors
yonas, skmcgrail, and 2 other contributors
Assets 2
aws-lc-rs v1.9.0
What's Changed
New or Expanded APIs
- Support for compressed and X.509 public key format (#498)
- Broader Ed25519 Key Format Support (#506)
- RSA PKCS1 v1.5 Encryption Support (#492)
- KDF in Counter Mode and One-Step KDF API (#482)
Build Improvement
- Pre-built NASM objects available. See the README for more information. (#491)
- Pregenerated bindings available on the following Windows platforms: (#486)
aarch64-pc-windows-msvci686-pc-windows-msvcx86_64-pc-windows-gnux86_64-pc-windows-msvc
- Updated to AWS-LC v 1.34.2 (from v1.32.0). Also see release notes 1.33.0 and 1.34.0. (#509)
- Now uses C11 Atomics to improve performance (if supported by C compiler). (aws/aws-lc#1729)
- Source paths stripped from release binaries. (#478)
Issues Being Resolved
- Remove NASM requirement for windows builds #364
- Exported symbols conflict with boring-sys crate #446
- aws-lc-sys leaks source paths bypassing rustc's trim-paths #470
- aws-lc-sys build should check for minimal bindgen version #484
Other Merged PRs
- Fill gaps in documentation by @justsmth in #465
- Update aws-lc-sys/aws-lc to AWS-LC v1.33.0 by @skmcgrail in #480
- Add CI test for FreeBSD by @justsmth in #477
- Fix careful CI; Return CI to nightly by @justsmth in #490
- Move RSA OAEP code into oaep module by @skmcgrail in #487
- cipher: clarify the EncryptingKey docs by @cpu in #488
- Drop unused
zeroize_derivefeature dependency by @ctz in #467 - Fix rustls integ test by @justsmth in #493
- Test agreement with randomly generated keys by @justsmth in #464
- Block::from can consume its argument by @justsmth in #501
- First parameter to EVP_MD_CTX_copy should not be initialized by @justsmth in #500
- Report bindgen version by @justsmth in #494
- Clarify the failure when a compiler bug is detected. by @justsmth in #497
- Cleanup usage of unsafe blocks by @justsmth in #499
- Fix link to Rust style guide by @cstyles in #502
- Safer pointer dereferences by @justsmth in #505
- Restore CI for
riscv64gc-unknown-linux-gnuby @justsmth in #507 - Update aws-lc-fips-sys build script by @justsmth in #510
- Add Feature "prebuilt-nasm"; Update documentation by @justsmth #511
- Fix for C99; Add tests by @justsmth in #513
- Bump aws-lc-rs to v1.9.0 by @justsmth in #515
New Contributors
Full Changelog: v1.8.1...v1.9.0
Contributors
cpu, skmcgrail, and 3 other contributors
Assets 2
aws-lc-rs v1.8.1
What's Changed
- Support for ECDSA P-521 with SHA1, SHA224, SHA256, SHA384 by @skmcgrail in #461
- Improved support for Windows build targets by @justsmth in #452
Merged PRs
- fix(build): armv7a and x86_64's ohos should set asm args by @richerfu in #456
- Latest cc requires Rust 1.67.0 by @justsmth in #458
- Update aws-lc-sys to v0.20.0 by @justsmth in #455
- Fix bindgen include file allowlist by @justsmth in #463
- Bump aws-lc-rs to v1.8.1 by @justsmth in #460
Full Changelog: v1.8.0...v1.8.1
Contributors
skmcgrail, richerfu, and justsmth
Assets 2
aws-lc-rs v1.8.0
Contributors
justsmth
Assets 2
aws-lc-rs v1.7.3
Merged PRs
- Pin to nightly-2024-05-22 by @justsmth in #432
- Pin rust-scripts by @justsmth in #433
- Cleanup use of mut ptr by @justsmth in #430
- Cross-compile using bindgen-cli by @justsmth in #429
- Allow cmake toolchain env by @justsmth in #431
- vcvarsall.bat can make very large env by @justinwsmith in #435
- Update aws-lc-sys to v0.18.0 (AWS-LC v1.29.0) by @justsmth in #442
- Update aws-lc-fips-sys to v0.12.9 (AWS-LC-FIPS v2.0.11) by @justsmth in #443
- Update nightly for api-diff by @justsmth in #441
- Update aws-lc-rs to v1.7.3 by @justsmth in #444
- feat: support openharmony platform by @southorange0929 in #434
New Contributors
- @southorange0929 made their first contribution in #434
Full Changelog: v1.7.2...v1.7.3
Contributors
justinwsmith, richerfu, and justsmth
Assets 2
aws-lc-rs v1.7.2
What's Changed
- Support for
aarch64-pc-windows-msvc(See #406) - Removed length limit on HKDF Info (See #424)
- Bump MSRV to v1.63 (See #418)
Merged PRs
- Cleanup CI and build configs by @justsmth in #418
- Update to codecov-action@v4 by @justsmth in #412
- Trivial RustRover cleanups by @justsmth in #415
- Refactor Step 1 - move "padded" cipher implementation to sub-module by @justsmth in #408
- RSA 8192 (slow) tests only for release build by @justsmth in #407
- CI for cross-compiling to x86_64-pc-windows-gnu by @justsmth in #414
- Fix recent change to rust-script syntax by @justsmth in #419
- aws-lc-rs v1.7.2 and aws-lc-sys v0.17.0 by @justsmth in #421
- Support build for aarch64-pc-windows-msvc by @justinwsmith in #406
- Fix s2n-quic integ test by @justsmth in #423
- Remove arbitrary HKDF info length limit by @justsmth in #424
- Update docs; add aarch64-pc-windows-msvc by @justsmth in #422
Full Changelog: v1.7.1...v1.7.2
Contributors
justinwsmith and justsmth
Assets 2
aws-lc-rs v1.7.1
What's Changed
- Support for using bindgen-cli to generate bindings when
bindgenfeature not enabled. (See: #388 and #402) - Support for build target
x86_64-pc-windows-gnu. (See: aws/aws-lc#1536 and aws/aws-lc#1559) - Support for building without an assembler by setting environment variables:
AWS_LC_SYS_NO_ASMorAWS_LC_FIPS_SYS_NO_ASM. This is only allowed for unoptimized builds. (See: #377) - Updates for the User Guide. (See: #400)
Merged PRs
- Include s390x in CI by @justsmth in #393
- Allow external bindgen for fips; more prefixing; bump aws-lc-fips-sys to v0.12.8 by @justsmth in #388
- Allow external bindgen; more prefixing; bump aws-lc-sys to v0.16.0 by @justsmth in #402
- ENV vars for OPENSSL_NO_ASM by @justsmth in #377
- hkdf: increase MAX_HKDF_INFO_LEN by @cpu in #411
- Fix Rustls integ test by @justsmth in #403
- Update s2n-quic integration test by @justsmth in #395
- Updates for User Guide by @justsmth in #400
- Align aws-lc-sys v0.16.0 with AWS-LC 1.26.0 by @justsmth in #417
- Build/test with
--releasebuild for MinGW, iOS by @justsmth in #399
New Contributors
Full Changelog: v1.7.0...v1.7.1
Contributors
cpu and justsmth