Release v1.7.4

Release Summary

• adds new security policies with post-quantum key exchange support

What's Changed

• test: add integration tests for serialization by @jmayclin in #5861
• ci: fix OpenSSL 1.0.2u download in Rust bindings CI by @WesleyRosenblum in #5868
• refactor: reset d2i pointer before private key type-hint fallback by @WesleyRosenblum in #5844
• ci: update to CBMC 6.9.0 by @WesleyRosenblum in #5867
• refactor(metrics-subscriber): key handshake counters by IANA id by @kaukabrizvi in #5858
• test: document io behaviors by @jmayclin in #5864
• chore: update fxhash dependency by @jmayclin in #5869
• refactor(metrics-subscriber): serialize FrozenCounter as a list by @kaukabrizvi in #5870
• fix: relax cert key preferences requirement by @CarolYeh910 in #5860
• build(deps): update s2n-codec requirement from 0.78 to 0.79 in /bindings/rust/standard by @dependabot[bot] in #5872
• fix(config): Re-complete domain cert map after failed add by @alexw91 in #5846
• feat(metrics-subscriber): Public access to types for deserialization by @skmcgrail in #5875
• build(deps): bump the all-gha-updates group across 1 directory with 2 updates by @dependabot[bot] in #5878
• build(deps): update s2n-codec requirement from 0.79 to 0.80 in /bindings/rust/standard by @dependabot[bot] in #5874
• chore: bindings release 0.3.37 by @jouho in #5882
• refactor: add iovec definition for Windows by @boquan-fang in #5880
• refactor: disable MLock on Windows by @boquan-fang in #5881
• test(metrics-subscriber): add memory profile test by @kaukabrizvi in #5883
• refactor: gate KTLS module out of Windows build by @boquan-fang in #5886
• refactor: replace MIN/MAX with S2N_MIN/S2N_MAX to remove <sys/param.h> dependency by @boquan-fang in #5879
• feat(metrics-subscriber): pluggable synthetic-traffic detector by @kaukabrizvi in #5885
• fix: validate pointer parameters in public API functions by @kaukabrizvi in #5889
• feat(serialize): add SSLv3 and TLS 1.0 CBC implicit IV preservation by @kaukabrizvi in #5873
• refactor(metrics-subscriber): cache parsed ClientHello lists by @kaukabrizvi in #5884
• feat(metrics-subscriber): add operation field to Attribution by @kaukabrizvi in #5892
• chore: release metrics subscriber v0.0.3 by @kaukabrizvi in #5896
• fix: pad DH shared secret to constant length by @WesleyRosenblum in #5778
• feat: add PQ-compatible variants of security policies by @jouho in #5887
• build(deps): bump aws-actions/configure-aws-credentials from 6.1.1 to 6.1.3 in /.github/workflows in the all-gha-updates group across 1 directory by @dependabot[bot] in #5894
• feat: add unstable API to allow IP addresses in CN for hostname validation by @CarolYeh910 in #5897
• refactor: gate socket support for Linux only by @boquan-fang in #5895
• ci: set up Windows MSYS2 Github Actions by @boquan-fang in #5898
• chore: add new team member by @fabit0v in #5899
• build(deps): update tabled requirement from 0.20.0 to 0.21.0 in /bindings/rust/standard by @dependabot[bot] in #5901
• build(deps): bump the all-gha-updates group in /.github/workflows with 3 updates by @dependabot[bot] in #5902
• build(deps): update s2n-codec requirement from 0.80 to 0.81 in /bindings/rust/standard by @dependabot[bot] in #5900
• feat(metrics-schema): Seperate out schema serialization from s2n-tls-metrics-subscriber by @skmcgrail in #5877
• feat(event): add security policy label to handshake event by @jmayclin in #5893
• fix: enable s2n-tls feature probes on Windows by @boquan-fang in #5907
• test(metrics): add EMF snapshot test by @jmayclin in #5909
• refactor(metrics snapshot test): use per-unit measurements by @jmayclin in #5910
• refactor: make MetricLabel more generic by @jmayclin in #5912

New Contributors

• @skmcgrail made their first contribution in #5875
• @fabit0v made their first contribution in #5899

Full Changelog: v1.7.3...v1.7.4