Weekly release for August 25 2025
Release Summary
- Add a copy of the rfc9151 policy (20250429) which pins all of the policy parts to the current version.
- Adds new TLSv1.3-enabled security policies for CloudFront's outbound ("upstream") connections to origin servers. We also add similar policies with PQ enabled.
What's Changed
- chore: bindings release 0.3.24 by @johubertj in #5455
- chore: apply clippy fixes by @johubertj in #5459
- Add fixed version of the rfc9151 policy by @Mark-Simulacrum in #5277
- test(integration): add record padding test by @jmayclin in #5451
- refactor(stuffer): Rename s2n_stuffer_has_pem_encapsulated_block by @alice-aws in #5465
- ci: don't include tls/extensions in SAW build by @lrstewart in #5466
- ci: fix wikipedia network test + better error message by @lrstewart in #5470
- refactor: setup replacement default policies by @lrstewart in #5464
- Add TLSv1.3 (classical + PQ) policies for CloudFront Upstream by @WillChilds-Klein in #5460
New Contributors
- @alice-aws made their first contribution in #5465
Full Changelog: v1.5.24...v1.5.25
Contributors
WillChilds-Klein, Mark-Simulacrum, and 4 other contributors