Release: v1.4.18

Weekly release for July 19 2024

What's Changed

• refactor: separate out ja3 specific logic by @lrstewart in #4578
• chore: fix CBMC proof summary count by @tautschnig in #4627
• fix: remove S2N_NO_PQ option by @kdnakt in #4622
• feat(bindings/s2n-tls): add client_hello_version by @jmayclin in #4609
• chore(bindings): release 0.2.8 by @toidiu in #4635
• api(bindings/s2n-tls)!: remove public testing feature by @jmayclin in #4623
• refactor: use feature probe for AEAD gate logic instead of AWS-LC/BoringSSL macros by @jouho in #4642
• ci(nix): Add tshark to nix devshell by @dougch in #4571
• chore: document why SHA1 is the only supported hash algorithm for cert_id generation in OCSP response by @jouho in #4625
• Refactor: change set/get_decryption_key return type to S2N_RESULT in s2n_cipher struct by @jouho in #4638
• Refactor: change init and destroy_key return type to S2N_RESULT in s2n_cipher struct by @jouho in #4639
• Refactor: change is_available return type to bool in s2n_cipher struct by @jouho in #4630
• test(pcap): handle pcaps with tcp fragmentation by @lrstewart in #4643
• refactor(bindings/s2n-tls): finish test harness refactor by @jmayclin in #4636
• feature: reusable fingerprinting interface by @lrstewart in #4628
• feat: Add API to gate session tickets to TLS1.3 only by @maddeleine in #4645
• ci: add merge_group event to GHA workflow. by @dougch in #4646
• fix: avoid cert validation on connection_set_config by @jmayclin in #4612
• Update s2n_connection_get_kem_group_name() to work with ClientHelloRe… by @alexw91 in #4652
• fix: Removing new usage of memcmp by @maddeleine in #4657
• chore: Bump Rust bindings v1.4.18 by @maddeleine in #4656

New Contributors

• @kdnakt made their first contribution in #4622

Full Changelog: v1.4.17...v1.4.18