dimpl 0.4.3

DTLS 1.2/1.3 implementation (Sans‑IO, Sync)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114

# Unreleased

# 0.4.3

  * Fix server auto-sensing DTLS version with fragmented ClientHello #87
  * DTLS 1.2 DTLS 1.3, parser reject ApplicationData in epoch 0/plaintext #90
  * DTLS 1.3 reject plaintext records with non-zero epoch #90
  * Silently discard invalid records and process subsequent valid records #90

# 0.4.2

  * Downgrade rand to 0.9 to avoid double chacha20 dep #84

# 0.4.1 (yanked)

  * Edition 2024 and bump deps (big cargo fmt) #83
  * Add DTLS 1.2 ChaCha20 and X25519 support #77
  * Bump MSRV to 1.85.0 #75
  * Make cipher and kx configurable #73

# 0.4.0

  * Restrict DTLS 1.2 key exchange to P-256/P-384 (for now) #70
  * Add AEAD, encrypt_sn, and key exchange validation to CryptoProvider #68
  * Add #[non_exhaustive] to public API enums likely to grow (breaking) #69
  * feat: Add protocol_version() accessor to Dtls #59
  * Bump all deps (possible with the current MSRV) #67
  * DTLS1.3 chacha20poly1305 and x25519 support #64
  * Fix panic in auto DTLS version selection #65
  * Add `Error::HandshakePending` for auto-sense pending state (breaking) #65
  * DTLS 1.2 ECDSA determine curve from certificate, not hash algorithm #57
  * DTLS 1.3 enforce SignatureScheme curve matches certificate key #60

# 0.3.0

  * DTLS 1.3 (breaking) #53
  * Refactor all/known/supported() (breaking) #55
  * Require now: Instant in Dtls::new() instead of panicking #54

# 0.2.7

  * Ensure compiling without features pulls in no deps #52

# 0.2.6

  * Fix ClientHello parser failing due to incorrect is_known method logic

# 0.2.5

  * Fix ClientHello Parser Failing when too many Cipher Suites #46

# 0.2.4

  * Drop dupe handshakes to not block newer messages #44

# 0.2.3

  * Fix DTLS HelloVerifyRequest by clearing queue_rx after sending HVR #40
  * Configurable RNG seed for tests #41

# 0.2.2

  * Add debug warn! for ReceiveQueueFull error #39

# 0.2.1

  * Fix DTLS protocol version in HelloVerifyRequest #36
  * Handle multiple Handshake in one Record #36
  * dimpl is not compatible with aws-lc-rs < 1.14 #35

# 0.2.0

  * Add fuzz testing to #32
  * Re-export Aad and Nonce that was missing #30
  * Add CodeQL analysis workflow configuration #27
  * Constant time equality #26
  * Pluggable CryptoProvider #16
    * aws-lc-rs backend (default)
    * rust-crypto backend (pure Rust)

# 0.1.5

  * Optimize parse speed using Box #14
  * Replace self_cell with indexes #14
  * Fix bug not retuning pooled Buf #14
  * Replace tinyvec with arrayvec #14
  * Remove zeroize - for now #13

# 0.1.4

  * Replace RustCrypto with aws-lc-rs #12
  * Fix SRTP key to include client_random and server_random #11
  * Make generated certs compatible with Firefox #11

# 0.1.3

  * Fixes to extension parsing #10
  * Better connection/flight timers #9
  * Remove rcgen/ring dependency #8

# 0.1.2

  * Bump MSRV to 1.81.0 #7
  * Bump rand to 0.9.x #7

# 0.1.1

  * Remove Diffie-Hellman (since no RSA) #6
  * Add github actions as CI #5
  * Fix bad MTU packing causing flaky tests #4
  * Remove ciphers using RSA #3

# 0.1.0
  * First published version