2.5.0 - 2022-09-02

• Add Python 3.11 build.
• Add musllinux build.
• tls: More typing fixes in the configuration.

2.4.0 - 2022-08-07

• typing: Complete typing.
• tls: Improve support for connectionless DTLS.
• tls: Implement and fix type of TLSWrappedSocket.recv_into().
• tls: Fix type of TLSWrappedSocket.recvfrom_into().

2.3.1

• tls: Fix argument to _enable_debug_output(). The function now takes a configured context instead of a MbedTLSConfiguration.
• typing: Add type annotations to more modules.

2.3.0

• tls: Improve typing and remove base class to TLSConfiguration and DTLSConfiguration.
• Update wheels to mbedtls 2.28.1

2.2.0

• pk: Fix choice of the curve in ECC (PR 63). Before this, the curve chosen was ignored and the ECC.generate() would always use the same one.
• pk: Improve handling of CURVE25519 and CURVE448 in ECC (PR 63).
• pk: ECDHClient and ECDHServer take an ECC key in __init__().
• pk: Remove to_ECDH_{client,server} methods from ECC.
• pk: Make key accessors public (and remove the private ones).

2.1.0

• tls: Add TLS 1.3 support.
• tls: TLSWrappedBuffer.shutdown() does not raise anymore when the connection is already closed.
• tls: Make TLSWrappedBuffer picklable in the limited cases documented under mbedtls_ssl_context_load and mbedtls_ssl_context_save in the backend.
• mpi: Remove is_prime() method.

2.0.1

• tls: Fix check of arguments to TLSWrappedSocket.sendto().

2.0.0

• tls: Context and TLSWrappedBuffer are now entirely separated.
  • The contexts are now picklable.
  • The contexts do not support TLSWrappedBuffer API anymore.
• tls: TLSSession currently unsupported!
• tls: Improved handshake logic with more appropriate signaling over WantReadError and WantWriteError.
• Update wheels to mbedtls 2.28.0 (current LTS).

1.7.0

• cipher: CBC does not use PKCS7 padding by default and now requires a full block. Encoding will raise ValueError otherwise.
• tls: Add support for session caching.
• tls: Implement context.getpeercert().
• tls: Add context manager to TLSWrappedSocket
• programs: Add example DTLS and TLS client and server.
• ci: Drop CircleCI.
• Update wheels to mbedtls 2.16.12
• Add support for Python 3.10.
• Drop Python 3.6 (EOL).

1.6.0

• tls: Fix arguments of TLSWrappedSocket.sendto() method.
• *: Add MacOS support and tests on GitHub.
• *: Add Windows support and tests on GitHub.
• *: Remove Travis-CI job: The main CI is moved to GitHub Actions because of the less FOSS-friendly policy by Travis CI.
• *: Implement the pickling protocol (PEP 307).
  RingBuffer, ciphers, TLSConfiguration and DTLSConfiguration, and x509 certificates are copyable. The other Cython classes are non-copyable.
• tls: Fix missing DTLS-only parameters in DTLSConfiguration __repr__() and __eq__(). Equality, especially, could have returned True for two configuration differing only on some parameters.
• tls: Fix handling of min and max handshake timeout when set independently.
• tls: Fix exception raised when unwrapping a TLSWrappedSocket before opening it.
• tls: Augment size of the accept buffer for DTLS (nicho2).
• Update wheels to mbedtls 2.16.11.