Sam Clark
Sam Clark
### Problem: https://github.com/aws/s2n-tls/pull/4539 added a new `s2n_record_write_mac` function which calculates the record MAC and writes it into a stuffer. This function was added to write the MAC into the record....
### Problem: Currently the peer's signature schemes are read into the [iana_list](https://github.com/aws/s2n-tls/blob/eb168f2025372e6f299486a718f24999a3715705/tls/s2n_signature_algorithms.h#L27) buffer. This limits the number of possible signature schemes the peer is allowed to send, since the buffer...
### Problem: The `zeroize` dependency of aws-lc-rs -> s2n-tls-sys has updated their MSRV to 1.72 in v1.8.0. This [breaks our build](https://github.com/aws/s2n-tls/actions/runs/8823035714/job/24222571418?pr=4512), since our MSRV is < 1.72. The `zeroize` dependency...
### Problem: [Ubuntu 24.04](https://releases.ubuntu.com/noble/) has recently been released. We should build and run the s2n-tls unit tests on this version to ensure compatibility. Related issue: https://github.com/aws/s2n-tls/issues/4464 ### Solution: Build s2n-tls...
### Security issue notifications If you discover a potential security issue in s2n we ask that you notify AWS Security via our [vulnerability reporting page](http://aws.amazon.com/security/vulnerability-reporting/). Please do **not** create a...
### Problem: The [sidetrail readme](https://github.com/aws/s2n-tls/tree/main/tests/sidetrail#how-to-execute-the-tests) contains instructions for running the sidetrail tests locally. These instructions indicate that a [sidetrail Dockerfile should be used](https://github.com/aws/s2n-tls/blob/3926a458aafdeb4c63ddefa63e2c54b431407e92/tests/sidetrail/README.md?plain=1#L132) to build an image. However, this Dockerfile...
### Problem: Currently the docker images used by the CI are not stored in the s2n-tls Github repository. This makes it difficult for external users to run tests without opening...
### Problem: The `s2n_cert_validation_accept()` and `s2n_cert_validation_reject()`APIs are used from within the `s2n_cert_validation_callback` to indicate whether the application cert validation checks have succeeded or failed. However, like most other s2n-tls callbacks,...
### Resolved issues: Resolves https://github.com/aws/s2n-tls/issues/4263 ### Description of changes: Adds a new API to the rust bindings that corresponds to `s2n_connection_is_session_resumed()`, which determines whether the connection was resumed. ### Call-outs:...
### Problem: https://github.com/aws/s2n-tls/pull/4544 resolved an issue where the oqs-provider client sent a list of signature schemes that exceeded the s2n-tls maximum, causing the connection to fail. This issue could have...