Releases: cloudflare/boring
Releases · cloudflare/boring
v4.18.0
What's Changed
- Add set_verify_param by @semaj-cf in #357
- Add support for X509_STORE_CTX_get0_untrusted by @semaj-cf in #356
- Add X509VerifyParamRef::copy_from by @nox in #361
- Fix X509VerifyContextRef::set_verify_param by @nox in #358
- Ensure we call X509_STORE_CTX_cleanup on error path too by @nox in #360
- Improve X509StoreContext initialization API by @nox in #359
- Don't unwrap when Result can be returned instead by @kornelski in #367
- Make X509Store shareable between contexts by @kornelski in #366
- Sprinkle #[must_use] by @kornelski in #368
- Expose SSL_set1_groups to Efficiently Set Curves on SSL Session by @Justin-Kwan in #346
- Upgrade bindgen to v0.72.0 by @akonradi-signal in #369
- Expose PKey::raw_{private,public}_key by @jrose-signal in #364
- Don't compile binaries for docs.rs by @kornelski in #370
- Remove some comments referring to OpenSSL by @hcstern in #374
New Contributors
- @Justin-Kwan made their first contribution in #346
- @akonradi-signal made their first contribution in #369
- @hcstern made their first contribution in #374
Full Changelog: v4.17.0...v4.18.0
Contributors
kornelski, nox, and 5 other contributors
Assets 2
v4.17.0
What's Changed
- Add
X509_STORE_CTX_get0_certinterface by @semaj-cf in #349 - expose
SSL_set_compliance_policyby @schien in #342 - add SslCurve::X25519_MLKEM768 constant by @ehaydenr in #345
- Fix linking SystemFunction036 from advapi32 in Rust 1.87 by @kornelski in #351
- boring(ssl): use
correspondsmacro inadd_certificate_compression_algorithmby @0x676e67 in #348 - Update bindgen from 0.70.1 to 0.71.1 by @mstyura in #347
New Contributors
Full Changelog: v4.16.0...v4.17.0
Contributors
kornelski, mstyura, and 4 other contributors
Assets 2
v4.16.0
What's Changed
- Advertise X25519MLKEM768 with "kx-client-pq-preferred" by @cjpatton in #329
- Add feature "fips-no-compat" by @cjpatton in #332 #334
- boring-sys: Ignore patches when boringSSL is precompiled by @cjpatton in #331
- Document linking to C++ standard library by @fhanau in #335
- Add fips-precompiled feature to support newer versions of FIPS by @rushilmehra in #338
- Add missing release notes entry by @rushilmehra in #324
- Update to actions/cache@v4 by @andrew-signal in #328
New Contributors
- @andrew-signal made their first contribution in #328
- @fhanau made their first contribution in #335
Full Changelog: v4.15.0...v4.16.0
Contributors
cjpatton, fhanau, and 2 other contributors
Assets 2
v4.15.0
What's Changed
- Actually expose SslEchKeys by @rushilmehra in #318
- Revert breaking changes by @rushilmehra in #319
- Introduce a builder pattern for SslEchKeys + make set_ech_keys take a reference by @rushilmehra in #320
- Revert cmake bump (for now) as it is overly restrictive by @rushilmehra in #321
- Fix lifetimes in ssl::select_next_proto by @rushilmehra in #323
- Expose API to enable certificate compression. by @mstyura in #241
NOTE: v4.14.0 has been yanked due to accidentally including breaking changes
Full Changelog: v4.14.0...v4.15.0
Contributors
mstyura and rushilmehra
Assets 2
v4.14.0
What's Changed
- Refactor!: Remove strict
TokioIoresponse requirement fromhyper_boring::v1::HttpsConnectorby @PaulDance in #305 - Refactor!: Introduce a Cargo feature for optional Hyper 0 support by @PaulDance in #304
- Prepare for syncing with upstream by @rushilmehra in #264
- Remove INVALID_CALL from mid-handshake error message by @TheJokr in #291
- Allow dead_code instead of disabling clippy entirely for bindgen by @rushilmehra in #251
- RTG-3333 Support X25519MLKEM768 by default, but don't sent it as client by @bwesterb in #306
- replace once_cell with LazyLock by @ghedo in #307
- chore: Fix docs on SslRef::replace_ex_data by @evanrittenhouse in #308
- Detailed error codes by @kornelski in #303
- Clean up boring_sys::init() by @rushilmehra in #310
- Expose client/server-side ECH by @rushilmehra in #309
- Expose SSL_set_enable_ech_grease by @rushilmehra in #311
- Use corresponds macro by @kornelski in #302
- build: Fix the build for 32-bit Linux platform by @0x676e67 in #312
- Set CMAKE_BUILD_PARALLEL_LEVEL to available_parallelism by @rushilmehra in #217
- Expose SSL_CTX_set1_ech_keys from SslContextRef by @rushilmehra in #314
- Bump cmake-rs to improve Mac OS build parallelism by @rushilmehra in #315
New Contributors
Full Changelog: v4.13.0...v4.14.0
Contributors
bwesterb, kornelski, and 6 other contributors
Assets 2
v4.13.0
What's Changed
- Fix Windows build by @PaulDance in #298
- Ci fixes by @kornelski in #299
- x509 verify params + safety fixes by @kornelski in #297
New Contributors
- @PaulDance made their first contribution in #298
- @kornelski made their first contribution in #299
Full Changelog: v4.12.0...v4.13.0
Contributors
kornelski and PaulDance
Assets 2
v4.12.0
What's Changed
- Add
set_cert_verify_callback(SSL_CTX_set_cert_verify) by @semaj-cf in #287 - Skip bindgen 0.70's layout tests before Rust 1.77 by @jrose-signal in #289
- (ci): brew link x86 toolchain for macos13 runner by @rushilmehra in #290
- Add binding for SSL_CB_ACCEPT_EXIT and SSL_CB_CONNECT_EXIT by @evanrittenhouse in #292
New Contributors
Full Changelog: v4.11.0...v4.12.0
Contributors
jrose-signal, rushilmehra, and 2 other contributors
Assets 2
v4.11.0
What's Changed
- Create semgrep.yml by @hrushikeshdeshpande in #281
- Add "fips-compat" feature by @ghedo in #286
- boring-sys: include HPKE header file for bindgen by @evanrittenhouse in #284
New Contributors
- @hrushikeshdeshpande made their first contribution in #281
Full Changelog: v4.10.3...v4.11.0
Contributors
ghedo, evanrittenhouse, and hrushikeshdeshpande
Assets 2
v4.10.3
Contributors
eaufavor
Assets 2
v4.10.2
What's Changed
Full Changelog: v4.10.1...v4.10.2
Contributors
bwesterb