forked from pool/bouncycastle
e17cf6e6b9
- Version update to 1.66
* Defects Fixed:
- EdDSA verifiers now reset correctly after rejecting overly long signatures.
- BCJSSE: SSLSession.getPeerCertificateChain could throw NullPointerException.
- qTESLA-I verifier would reject some valid signatures.
- qTESLA verifiers now reject overly long signatures.
- PGP regression caused failure to preserve existing version header when
headers were reset.
- PKIXNameConstraintValidator had a bad cast preventing use of multiple
OtherName constraints.
- Serialisation of the non-CRT RSA Private Key could cause a NullPointerException.
- An extra 4 bytes was included in the start of HSS public key encodings.
- CMS with Ed448 using a direct signature was using id-shake256-len
rather than id-shake256.
- Use of GCMParameterSpec could cause an AccessControlException under
some circumstances.
- DTLS: Fixed high-latency HelloVerifyRequest handshakes.
- An encoding bug for rightEncoded() in KMAC has been fixed.
- For a few values the cSHAKE implementation would add unnecessary pad bytes
where the N and S strings produced encoded data that was block aligned.
- There were a few circumstances where Argon2BytesGenerator might hit an
unexpected null. These have been removed.
* Additional Features and Functionality
- The qTESLA signature algorithm has been updated to v2.8 (20191108).
- BCJSSE: Client-side OCSP stapling now supports status_request_v2 extension.
- Support has been added for "ocsp.enable", "ocsp.responderURL" and
PKIXRevocationChecker for users of Java 8 and later.
- Support has been added for "org.bouncycastle.x509.enableCRLDP" to the PKIX validator.
- BCJSSE: Now supports system property 'jsse.enableFFDHE'
- BCJSSE: Now supports system properties 'jdk.tls.client.SignatureSchemes'
OBS-URL: https://build.opensuse.org/request/show/823216
OBS-URL: https://build.opensuse.org/package/show/Java:packages/bouncycastle?expand=0&rev=60
41 lines
1.2 KiB
XML
41 lines
1.2 KiB
XML
<?xml version="1.0" encoding="UTF-8"?>
|
|
<project>
|
|
<modelVersion>4.0.0</modelVersion>
|
|
<groupId>org.bouncycastle</groupId>
|
|
<artifactId>bctls-jdk15on</artifactId>
|
|
<packaging>jar</packaging>
|
|
<name>Bouncy Castle JSSE provider and TLS/DTLS API</name>
|
|
<version>1.66</version>
|
|
<description>The Bouncy Castle Java APIs for TLS and DTLS, including a provider for the JSSE.</description>
|
|
<url>http://www.bouncycastle.org/java.html</url>
|
|
<licenses>
|
|
<license>
|
|
<name>Bouncy Castle Licence</name>
|
|
<url>http://www.bouncycastle.org/licence.html</url>
|
|
<distribution>repo</distribution>
|
|
</license>
|
|
</licenses>
|
|
<scm>
|
|
<url>https://github.com/bcgit/bc-java</url>
|
|
</scm>
|
|
<issueManagement>
|
|
<system>GitHub</system>
|
|
<url>https://github.com/bcgit/bc-java/issues</url>
|
|
</issueManagement>
|
|
<developers>
|
|
<developer>
|
|
<id>feedback-crypto</id>
|
|
<name>The Legion of the Bouncy Castle Inc.</name>
|
|
<email>feedback-crypto@bouncycastle.org</email>
|
|
</developer>
|
|
</developers>
|
|
<dependencies>
|
|
<dependency>
|
|
<groupId>org.bouncycastle</groupId>
|
|
<artifactId>bcprov-jdk15on</artifactId>
|
|
<version>1.66</version>
|
|
<type>jar</type>
|
|
</dependency>
|
|
</dependencies>
|
|
</project>
|