Compare
-
23 related issues
- #11: RSA_OAEPTest.testDecryptWith256GCM fails on MAC/GCM check resolved
- #448: Illegal reflection reported on the nimbus project resolved
- #460: Improve RemoteJWKSet - additional requirements and with example implementation resolved
- #469: Touch up the new JWK sourcing resolved
- #472: Is Nimbus-JOSE-JWT vulnerable to CVE-2022-21449? resolved
- #473: ECDSA.transcodeSignatureToDER must not throw unchecked exceptions resolved
- #474: Add front line of defense against CVE-2022-21449 attacks on vulnerable JREs resolved
- #475: Some tests do not fail for missing exceptions resolved
- #483: jose-jwt requires java 1.8 not 1.7 as README suggests resolved
- #484: 9.24 Gson shading does not seem to be working resolved
- #485: 9.24(.1) Gson time serialization issue resolved
- #489: GSON changed serialization behavior resolved
- #490: JWE with shared key support for Android Hardware KeyStore (TEE) keys open
- #492: SignedJWT.parse gives nullpointerexception when a jwt has a header missing resolved
- #493: JWSObject.parse with empty signature must throw ParseException instead of signal an invalid signature resolved
- #496: module-info.java from com.google.gson included in nimbus-jose-jwt.jar from version 9.24 resolved
- #497: Fix for Issue #496 resolved
- #506: RSASSASigner cannot read private keys with algorithm RSASSA-PSS resolved
- #510: JWKSourceBuilder cacheForever raises "JWKSetUnavailableException: Unable to refresh cache" resolved
- #511: JWTClaimsSet.parse: Consider throwing ParseException on "sub" or "aud" of illegal JSON type resolved
- #518: Using R8 "full mode" causes issues (workaround provided) resolved
- #520: MacSigner with secret key from AWS cloudHSM not usable. resolved
- #521: Consider making BaseJWEProvider public resolved
-
- Loading...
| Author | Commit | Message | Date | Builds |
|---|---|---|---|---|
|
[maven-release-plugin] prepare release 9.37.2
|
|
||
|
|
|
|||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.37.1
|
|
||
|
|
Adds change log entry for iss
|
|
||
|
|
cf557b0
M
|
Merge branch 'master' of ssh://bitbucket.org/connect2id/nimbus-jose-jwt
|
|
|
|
|
61f93de
M
|
Merged in master (pull request #110)
exclude GSON's `module-info.class` from shaded jar
|
|
|
|
|
exclude GSON's `module-info.class` from shaded jar
fixes https://bitbucket.org/connect2id/nimbus-jose-jwt/issues/496
|
|
||
|
|
Expands JWTClaimsSet tests
|
|
||
|
|
Fixes Payload JavaDoc
|
|
||
|
|
Updates README.md OpenID Federation 1.0 ref
|
|
||
|
|
Updates README.md formatting
|
|
||
|
|
Fixes README.md MD list formatting
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.37
|
|
||
|
|
Adds JWTClaimsSet.getListClaim method
|
|
||
|
|
Updates maven-surefire-plugin, removes config workaround for maven-surefire-plugin bug
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.36
|
|
||
|
|
Adds new JWKSet.filter method
|
|
||
|
|
Bumps jacoco-maven-plugin to 0.8.10
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.35
|
|
||
|
|
Makes the abstract class BaseJWEProvider public (iss
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.34
|
|
||
|
|
Updates the MACVerifier to support SecretKey instances don't expose the key material (iss
|
|
||
|
|
Fixes the MACSigner.sign method for SecretKey instances that don't expose their key material (iss
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.33
|
|
||
|
|
Reformats JavaDocs
|
|
||
|
|
|
|||
|
|
Refactors the HMAC class to support PKCS
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.32
|
|
||
|
|
Adds MultiEncrypter test with example from https://datatracker.ietf.org/doc/html/rfc7516#appendix-A.4.7
|
|
||
|
|
Adds missing JWEObjectJSON tests to complete coverage
|
|
||
|
|
JWEObjectJSON.Recipient.parse is okay to throw NPE on null arg
|
|
||
|
|
Updates 9.32 change log with JWEObjectJSON related updates
|
|
||
|
|
Bumps Google Tink
|
|
||
|
|
Renames JWEObjectJSON field and method names for consistency, JavaDoc edits, adds test from https://datatracker.ietf.org/doc/html/rfc7516#appendix-A.4.7
|
|
||
|
|
Removes experimental JWEAlgorithm.JWK_ALG constant
|
|
||
|
|
Makes the JOSEObjectJSON.toGeneralJSONObject and toFlattenedJSONObject methods public
|
|
||
|
|
Edits JOSE object JavaDoc for consistency
|
|
||
|
|
Removes unused import in JWEObjectJSON
|
|
||
|
|
Updates JavaDoc overview.html with JWEObjectJSON reference
|
|
||
|
|
Adds missing JavaDocs to BaseJWEProvider.getCEK and isCEKProvided
|
|
||
|
|
Adds JavaDoc note JWEHeader.Builder.Builder(EncryptionMethod) is intended for multi-recipient JWE, makes constructor second because the most common construction will be with (JWEAlgorithm,Encryption)
|
|
||
|
|
Moves the static getAlgorithmAndEnsureNotNull from BaseJWEProvider to a dedicated JWEHeaderValidation class to remove the method from the BaseJWEProvider API
|
|
||
|
|
4be0990
M
|
Merged in iss517-4 (pull request #108)
Outstanding MultiEncrypter + MultiDecrypter issues
Approved-by: Vladimir Dzhuvinov
|
|
|
epuzanov
|
Add a getAlgorithmAndEnsureNotNull method to the BaseJWEProvider class
|
|
||
|
epuzanov
|
make use of JWEHeader without alg defined
|
|
||
|
epuzanov
|
fix Header parsing
|
|
||
|
epuzanov
|
add the 'join' method to the Header class
|
|
||
|
epuzanov
|
make use of HeaderValidation ensureDisjoint method with any protected JOSE headers
|
|
||
|
epuzanov
|
make the 'alg' parameter optional in the JWEHeader
|
|
||
|
|
Updates the JWT processing framework examples for the Wiki
|
|
||
|
|
Adds special JWEAlgorithm.JWK_ALG constant for use in multi-recipient JWEObjectJSON
|
|
||
|
|
Updates MultiDecrypter JavaDocs
|
|
||
|
|
Minor JWEMultipleRecipientsTest updates for better clarity
|
|
||
|
|
JWEMultipleRecipientsTest exceptions checks must use concrete exception class, not Exception
|
|
||
|
|
Improves the MultiEncrypter constructor exception messages
|
|
||
|
|
Revert "Allow the Algorithm.NONE for the JWEHeader alg attribute"
This reverts commit 9839604446f85fed28f43d8223a5cf7e33ef1cb5.
|
|
||
|
|
ae11844
M
|
Merged in iss517 (pull request #107)
Iss517
|
|
|
|
|
Fixes Proguard arg in README.md
|
|
||
|
epuzanov
|
Allow the Algorithm.NONE for the JWEHeader alg attribute
|
|
||
|
epuzanov
|
Add x5c test to the testRecipients_identicalJWEAlg_recipientMatch test case
|
|
||
|
|
Adds Proguard / R8 use note in README.md
|
|
||
|
epuzanov
|
Use the kid, x5u, x5t and x5c attribute for recipient matching
|
|
||
|
epuzanov
|
Replace multiple 'if else' statements with the single 'if' statement
|
|
||
|
epuzanov
|
remove commented blocks in JWEMultipleRecipientsTest
|
|
||
|
epuzanov
|
Validate supplied keys algs in the MultiEncrypter constructor
|
|
||
|
|
Updates JSONObjectUtils.parse(String,int) to ensure generic types not erased by obfuscation tools (iss
|
|
||
|
|
Bumps Tink to 1.9.0
|
|
||
|
|
JWEObjectJSON: More readable isEmpty checks
|
|
||
|
|
DirectCryptoProvider: Removes useless cek == null check
|
|
||
|
|
Adds MultiEncrypter tests to highlight outstanding issues
|
|
||
|
|
JWEMultipleRecipientsTest: Factors out illegal arg tests
|
|
||
|
|
JWEObjectJSON: factors out the JSON object output code that is common between the JSON and the flattened serialisation
|
|
||
|
|
JWEObjectJSON: makes recipient header params static (using constants), JavaDoc and exception message edits / fixes
|
|
||
|
|
MultiEncrypter must not internally generate / set the "kid" in per recipient JWT headers
|
|
||
|
|
Renames private method in MultiEncrypter to match naming convention
|
|
||
|
|
JavaDoc edits
|
|
||
|
|
Removes the unused MultiDecrypter.getRecipientHeaderParams method, makes the common JWK + JWE header parameter names a constant, notes potential issues
|
|
||
|
|
Deletes unused imports
|
|
||
|
|
Fixes JavaDoc error in ECDH1PUEncrypter
|
|
||
|
|
Fixes JavaDoc errors
|
|
||
|
|
Minor JWEObjectJSON code cleanups, expands tests
|
|
||
|
|
The Payload of an encrypted (but not decrypted) JWEObjectJSON must be null
|
|
||
|
|
Fixes var name typo in JWEMultipleRecipientsTest.testMultipleRecipients
|
|
||
|
|
664fc1e
M
|
Merge branch 'master' of ssh://bitbucket.org/connect2id/nimbus-jose-jwt
|
|
|
|
|
9f2ce30
M
|
Merged in JWEJSONSerialization (pull request #105)
JWE JSON Serialization
|
|
|
|
|
Bumps maven-shade-plugin
|
|
||
|
|
Updates GSon to 2.10.1
|
|
||
|
epuzanov
|
Add the MultiEncrypter test for empty JWKSet parameter
|
|
||
|
epuzanov
|
Use the null instead of A128GCM as the parameter for getCEK in the DirectCryptoProvider to return current CEK value
|
|
||
|
epuzanov
|
Fix the exception message string
|
|
||
|
epuzanov
|
Add the comment to the encryptedKey parsing block
|
|
||
|
epuzanov
|
Try to use the Direct SecretKey as a CEK
|
|
||
|
epuzanov
|
The MultiCryptoProvider does not support DIRECT AlgorithmMode
|
|
||
|
|
Adds a new RSASSASigner(RSAKey, Set<JWSSignerOption>) constructor
|
|
||
|
|
Expands CompletableJWSObjectSigning tests
|
|
||
|
|
Edits ECDSASigner and CompletableJWSObjectSigning JavaDocs, change log
|
|
||
|
|
3326f08
M
|
Merged user verification support to ECDSA (pull request #106)
|
|
|
|
|
Add support for UserAuthenticationRequired to ECDSASigner
This adds support for the UserAuthenticationRequired JWSSignerOption to
the ECDSASigner.
Additionally it adds the initialized Signature object to the
ActionRequiredForJWSCompletionException to enable user authentication on
platforms that require the Signature object to be part of the user authentication
call.
|
|
||
|
epuzanov
|
The CEK support refactoring
|
|
||
|
epuzanov
|
add parameter validation to the JWEObjectJSON parse method
|
|
||
|
epuzanov
|
fix the getEncryptedKey method and add the test cases for it
|
|
||
|
epuzanov
|
Add the tests of the JWEObjectJSON constructor
|
|
||
|
epuzanov
|
Reuse of the JWEObject.State enum in the JWEObjectJSON class
|
|
||
|
epuzanov
|
Simplify the updatedAAD assign
|
|
||
|
epuzanov
|
add the tests for the MultiEncrypter and the MultiDecrypter parameters
|
|
||
|
epuzanov
|
More granular testing of the encrypted multirecipient JSON JWE object
|
|
||
|
epuzanov
|
Factoring out the AAD parsing to the protected header map. Validate the jwk argument in the MultiDecrypter constructor.
|
|
||
|
epuzanov
|
Add the MultiEncrypter and MultiDecrypter classes
|
|
||
|
epuzanov
|
Move the AAD from CryptoProvider to the JWEObject and JEWObjectJSON classes
|
|
||
|
epuzanov
|
add a JWEObjectJSON constructor with aad parameter
|
|
||
|
epuzanov
|
add AADParsing and HeaderDuplicates tests to the JWEObjectJSONTest test case
|
|
||
|
epuzanov
|
fix duplicated headers validation
|
|
||
|
epuzanov
|
add JWEObjectJSON class
|
|
||
|
|
Simplifies test public key generation in MultipleRecipientsTest
|
|
||
|
|
Renames MultipleRecipientsTest -> JWEMultipleRecipientsTest
|
|
||
|
|
Change log for v9.32 - RSA and ECDH JWE to multiple recipients
|
|
||
|
|
MultipleRecipientsTest lang level must be Java 7
|
|
||
|
|
Renames {RSACryptoProvider|ECDHCryptoProvider}.getAad() to getAAD() to follow lib convention, edits JavaDocs
|
|
||
|
|
Moves aad after clearText in ContentCryptoProvider.encrypt method signature
|
|
||
|
|
358da34
M
|
Merged in customAad (pull request #103)
Custom AAD.
Approved-by: Vladimir Dzhuvinov
|
|
|
|
epuzanov
|
add the test case for multiple recipients encryption/decryption
|
|
||
|
epuzanov
|
Add support for the custom AAD. It needed for the multiple recipients encrypt/decrypt operations.
|
|
||
|
|
dc13039
M
|
Merged in issue508version2 (pull request #101)
Improve multithreaded tests so that they run for less flaky in CI
Approved-by: Vladimir Dzhuvinov
|
|
|
|
|
Improve multithreaded tests so that they run for less flaky in CI
|
|
||
|
|
3591a6c
M
|
Merged connect2id/nimbus-jose-jwt into master
|
|
|
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.31
|
|
||
|
|
JWTClaimsSet.parse must throw ParseException on sub and aud claims of illegal JSON type (iss
|
|
||
|
|
Edits JWTClaimsSet.parse tests for 'aud' and 'sub', adds change log for PR 100
|
|
||
|
|
da56fe0
M
|
Merged in allow_number_in_sub (pull request #100)
Allow JSON number in sub claim when parsing
|
|
|
|
Miguel Pontes
|
Allow JSON number in sub claim
|
|
||
|
|
2ab926e
M
|
Merged in issue508 (pull request #99)
Improve multithreaded tests so that they run for the desired duration also in CI
Approved-by: Yavor Vasilev
|
|
|
|
|
Improve multithreaded tests so that they run for the desired duration also in CI
|
|
||
|
|
19c2c08
M
|
Merged connect2id/nimbus-jose-jwt into master
|
|
|
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.30.2
|
|
||
|
|
CachedObject.computeExpirationTime must return Long.MAX_VALUE when the sum of the current time and TTL wraps around (iss
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.30.1
|
|
||
|
|
Edits RSASSA-PSS tests for iss
|
|
||
|
|
60eeb99
M
|
Merged in Strehle--Markus/rsassasignerjava-edited-online-with-bitb-1674940484251 (pull request #98)
Create RSASSASigner from all RSAPrivateKey instances
Approved-by: Vladimir Dzhuvinov
Approved-by: Yavor Vasilev
|
|
|
|
|
Fix PR and add test
|
|
||
|
|
c7b8306
M
|
Merge branch 'master' of bitbucket.org:connect2id/nimbus-jose-jwt into Strehle--Markus/rsassasignerjava-edited-online-with-bitb-1674940484251
|
|
|
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.30
|
|
||
|
|
Fixes ECDSA test with JCA provider
|
|
||
|
|
Adds ECKeyGenerator and RSAKeyGenerator provider(java.security.Provider) method to set an explicit JCA provider
|
|
||
|
|
privateKey check
|
|
||
|
|
RSASSASigner.java edited online with Bitbucket
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.29
|
|
||
|
|
Adds static DateUtils.nowWithSecondsPrecision method
|
|
||
|
|
Updates refs
|
|
||
|
|
Reverts AlgorithmFamily refactoring
|
|
||
|
|
Cleans up code
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.28
|
|
||
|
|
4794a9a
M
|
Merges #iss460, #iss460
|
|
|
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.27
|
|
||
|
|
JWKGenerator classes add support for exp, nbf and exp
|
|
||
|
|
JWSAlgorithm JavaDoc edit
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.26
|
|
||
|
|
Updates GSon to 2.10
|
|
||
|
|
Adds copy OctetSequenceKey.Builder
|
|
||
|
|
JWK adds support for exp, nbf and exp parameters as specified in OpenID Connect Federation 1.0
|
|
||
|
|
a8be346
M
|
Merged in iss469_more_tests_and_adjustments (pull request #97)
More unit tests + minor adjustments
|
|
|
|
|
More tests and minor adjustments
|
|
||
|
|
Makes JWKSetCacheRefreshEvaluator impls package private (iss
|
|
||
|
|
Removes outdated comment in AbstractCachingJWKSetSource (iss
|
|
||
|
|
Adds multi-threaded JWKSetSource with overlapping key rotation test (iss
|
|
||
|
|
Adds JWKSetCacheRefreshEvaluator to OutageTolerantJWKSetSource (iss
|
|
||
|
|
Overrides JWKSet equals and hashCode methods
|
|
||
|
|
JWKSetCacheRefreshEvaluator naming changes (iss
|
|
||
|
|
ba7ed12
M
|
Merged in iss469_with_cache_evaluator (pull request #94)
Refactor reload parameter into a more finegrained mechanism
|
|
|
|
|
Refactor reload parameter into a more finegrained mechanism
|
|
||
|
|
dbac66b
M
|
Merged connect2id/nimbus-jose-jwt into master
|
|
|
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.25.6
|
|
||
|
|
|
|||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.25.5
|
|
||
|
|
The module-info.class from the shaded com.google.gson package must not be included in the JAR (iss
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.25.4
|
|
||
|
|
|
|||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.25.3
|
|
||
|
|
KeyUtils.toAESKey must return the input key unmodified if its algorithm is AES (iss #490)
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.25.2
|
|
||
|
|
KeyUtils.toAESKey must not recreate the SecretKey but wrap it, to avoid calling its getEncoded method (iss #490)
|
|
||
|
|
Adds JWS header parse tests (iss
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.25.1
|
|
||
|
|
Updates the DirectCryptoProvider (alg=dir) to support HSM-based SecretKey instances with A128GCM, A192GCM and A256GCM (iss #490)
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.25
|
|
||
|
|
JWKGenerator.secureRandom change log, tests, credits
|
|
||
|
|
6de9d07
M
|
Merged in master (pull request #93)
Add support to use secureRandom in RSAKeyGenerator.generate() and ECKeyGenerator.generate()
Approved-by: Vladimir Dzhuvinov
|
|
|
|
|
Support secureRandom for RSA and EC key pair gen
Move secureRandom member and secureRandom() method from OctetSequenceKeyGenerator to super class JWKGenerator. If the secureRandom member is non-null, RSAKeyGenerator.generate() and ECKeyGenerator.generate() will pass the secureRandom member to KeyPairGenerator.initialize().
No change to OctetKeyPairGenerator.generate(), it uses a third-party library which lacks an option to inject a SecureRandom…
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.24.4
|
|
||
|
|
Fixes GSon serialisation of HTML and XML control characters (iss
|
|
||
|
|
Adds JWKSourceBuilderIntegration test with failover source (iss
|
|
||
|
|
Adds JWKSourceBuilderIntegration test for outage tolerant source, references exception in outage event (iss
|
|
||
|
|
Adds JWKSourceBuilderIntegration test for retrying source (iss
|
|
||
|
|
Adds JWKSourceBuilder integration tests (iss
|
|
||
|
|
JWKSourceBuilder made to pass the same event listener for the caching source and the refresh-ahead one (iss
|
|
||
|
|
Makes JWKSourceBuilder fields private (iss
|
|
||
|
|
HealthReport includes event source and context (iss
|
|
||
|
|
Factors out generic event interfaces (iss
|
|
||
|
|
Wires new event listeners into the JWKSourceBuilder (iss
|
|
||
|
|
Reworks JWKSetSource event listeners to accept typed event objects (iss
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.24.3
|
|
||
|
|
Adds JSONObjectUtils.parse duplicate key test
|
|
||
|
|
Bumps Tink and other deps
|
|
||
|
|
Refactors JWKSetSourceWithHealthStatusReporting, cleans up event listener interfaces in prep for rework, adds tests (iss
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.24.2
|
|
||
|
|
Fixes GSon integer parsing in JSONObjectUtils (iss
|
|
||
|
|
Adds Payload test for Gson time serialisation issue (iss #485)
|
|
||
|
|
Adds JSONObjectUtils test
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.24.1
|
|
||
|
|
Fixes GSon relocation pattern in maven-shade-plugin config (iss #484)
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.24
|
|
||
|
|
Replaces JSON Smart 2.4.8 (shaded) with GSon 2.9.1 (also shaded) (iss #448, #483)
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.23
|
|
||
|
|
Updates JWKMatcher to match "x5t#S256" against a key "x5t#S256" parameter as well as thumbprint of a "x5c" parameter
|
|
||
|
|
Adds JWKMatcher support for matching JWKs with present "x5c"
|
|
||
|
|
Simplifies JCASupport.isSupported(JWSAlgorithm,Provider)
|
|
||
|
|
Fixes missing test fail() (iss #475)
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.22
|
|
||
|
|
Adds ECDSA R and S signature value checking to prevent exploitation of Java runtimes and JCE providers vulnerable to CVE-2022-21449 (iss #472)
|
|
||
|
|
Adds testTranscoding_DER_to_concat_blank
|
|
||
|
|
[maven-release-plugin] prepare for next development iteration
|
|
||
|
|
[maven-release-plugin] prepare release 9.21.1
|
|
||
| 25 commits not shown. | ||||