(nothing yet)
- Restored the KMS client cache with a fix for the memory leak.
- When using a master key provider that can only service a subset of regions (e.g. using the deprecated constructors), and requesting a master key from a region not servicable by that MKP, the exception will now be thrown on first use of the MK, rather than at getMasterKey time.
- Removed the KMS client cache, which could result in a memory leak when decrypting certain malformed ciphertexts. This may reduce performance slightly in some scenarios.
- Move the
aws-encryption-sdk-javarepository fromawslabstoaws. - Log a warning when an unsupported asymmetric algorithm is used with
JceMasterKey - Make
JceMasterKeycase insensitive - Fix bare aliases not using default region
- Frame size restriction removed again
- Support Builders for use with AWS KMS
- Fix estimateCipherText when used with cached data keys
- Do not automatically set a default region in KmsMasterKeyProvider
- Frame sizes are once again required to be aligned to 16 bytes This restriction was relaxed in 1.3.0, but due to compatibility concerns we'll put this restriction back in for the time being.
- Synchronized version numbers with the Python release
- Added cryptographic materials managers
- Added data key caching
- Moved to deterministic IV generation
- Added changelog
- Made elliptic curve signatures length deterministic
- Various minor improvements