Sam Clark
Sam Clark
### Security issue notifications If you discover a potential security issue in s2n we ask that you notify AWS Security via our [vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/). Please do **not** create a...
### Problem: It's currently possible for the IO APIs to return a `S2N_ERR_T_BLOCKED` error with a blocking socket, which can be confusing for users. This can happen if a timeout...
### Problem: Currently, the CI jobs compile s2n-tls normally in order to run unit tests, which results in feature flags being enabled based on the capability of the CI instances....
### Problem: [RFC 9151](https://datatracker.ietf.org/doc/html/rfc9151#name-acceptable-elliptic-curve-c) describes the Commercial National Security Algorithm (CNSA) specification which defines acceptable ECC curves and RSA parameters for TLS 1.2 and TLS 1.3 connections. We should add...
### Problem: s2n-tls currently keeps track of four separate TLS protocol version fields on a connection: - **`server_protocol_version`**: The highest protocol version supported by the server. - **`client_protocol_version`**: The highest...
### Problem: Features are enabled in CMake by attempting to compile a feature test and link it with the libcrypto. If an error occurs during compilation or linking the feature...
### Problem: The resumption interop test has recently started failing with the neqo client and s2n-quic server. neqo has released a fix related to this issue (https://github.com/mozilla/neqo/pull/1837), but the interop...
### Description of changes: s2n_record_writev uses an s2n_hmac object to calculate and write the record MAC. However, some cipher types, like AEAD, don't dictate writing a separate MAC. Instead, the...
### Problem: Currently, the vast majority of the Codebuild CI jobs use a Ubuntu 18 image: https://github.com/aws/s2n-tls/blob/1ed5624c24c80b5ef93f93a72ee93b503ddd6eba/codebuild/spec/buildspec_generalbatch.yml#L22 This includes many of the unit test jobs that test combinations of compilers...
### Problem: s2n-tls Github issues are assigned a priority label to indicate how urgently the issue should be resolved, which provides better visibility into which issues should be worked on....