Release 1.1.1 to correct missing aux data in AWS KMS decrypt path

Auxilliary data was not provided in encryption context provided
to AWS KMS decrypt() call, causing unwrapping to fail.

3 files changed, 6 insertions, 2 deletions

diff --git a/Cargo.toml b/Cargo.toml
index def762d..8b7d652 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "roughenough"
-version = "1.1.0"
+version = "1.1.1"
 repository = "https://github.com/int08h/roughenough"
 authors = ["Stuart Stock <stuart@int08h.com>", "Aaron Hill <aa1ronham@gmail.com>"]
 license = "Apache-2.0"
diff --git a/src/kms/awskms.rs b/src/kms/awskms.rs
index 4a244db..7ff131a 100644
--- a/src/kms/awskms.rs
+++ b/src/kms/awskms.rs
@@ -99,6 +99,10 @@ pub mod inner {
             let mut decrypt_req: DecryptRequest = Default::default();
             decrypt_req.ciphertext_blob = encrypted_dek.clone();
 
+            let mut dec_context = HashMap::new();
+            dec_context.insert("AD".to_string(), AD.to_string());
+            decrypt_req.encryption_context = Some(dec_context);
+
             match self.kms_client.decrypt(decrypt_req).sync() {
                 Ok(result) => {
                     if let Some(plaintext_dek) = result.plaintext {
diff --git a/src/lib.rs b/src/lib.rs
index b87f800..4c478f1 100644
--- a/src/lib.rs
+++ b/src/lib.rs
@@ -84,7 +84,7 @@ pub use message::RtMessage;
 pub use tag::Tag;
 
 /// Version of Roughenough
-pub const VERSION: &str = "1.1.0";
+pub const VERSION: &str = "1.1.1";
 
 /// Roughenough version string enriched with any compile-time optional features
 pub fn roughenough_version() -> String {