➕ Added CMS fuctions
berToContentInfoin order to generate and parse raw ASN.1.
Implementation of AES key wrap had some optimizations.
SHAKE hash algorithms now allow arbitrary output lengths. Lengths that are very small decrease security. A protection is added so that attempts to use lengths which are too small fail, although the criteria are conservative. Generating and parsing content has no restriction.
➕ Added functions
fromNamedCredentialto handle PKCS#12 elements with an alias (friendly name).
fromNamedCredentialnow generate PKCS#12 elements with the
toCredentialis now able to locate the leaf certificate and issuers more reliably.
👍 Algorithms X25519, X448, Ed25519 and Ed448 are now supported.
verifySignedDatanow return an
Eitherinstead of a
SignatureNotVerifiedare added to report failures.
AuthenticatedDatanow retain the encapsulated content in encoded form (with type alias
EncapsulatedContent) instead of a decoded and parsed
ContentInfois parsed and provided only when successfully unwrapping the encapsulated type.
👍 The CMS interface is transformed to support detached content. CMS types now have a type parameter to distinguish between a direct reference to the encapsulated or encrypted content, and the
Encapindirection which denotes an attached or detached content. Functions building CMS types do not return the
ContentInfodirectly anymore, but an intermediate type to be fed into
toDetachedCI. Reverse transformation is possible with utility functions
fromDetachedwhen unwrapping a
- 🚀 First version. Released on an unsuspecting world.