kjur/jsrsasign (jsrsasign)
### [`v11.0.0`](https://togithub.com/kjur/jsrsasign/releases/tag/11.0.0): remove RSA and RSAOAEP encryption for Marvin attack
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.9.0...11.0.0)
- Changes from 10.9.0 to 11.0.0 (2024-Jan-16)
- remove RSA [PKCS#1](https://togithub.com/PKCS/jsrsasign/issues/1).5 end OAEP encryption/decryption for Marvin attack ([#598](https://togithub.com/kjur/jsrsasign/issues/598))
- src/crypto.js
- remove KJUR.crypto.Cipher class for RSA and RSAOAEP encryption/decryption
- ext/{rsa,rsa2}.js
remove encrypt/decrypt/encryptOAEP/decryptOAEP for RSAKey class
### [`v10.9.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.9.0): enhanced support for encrypted PKCS8
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.6...10.9.0)
- Changes from 10.8.6 to 10.9.0 (2023-Nov-27)
- KEYUTIL.getPEM is updated not to use weak ciphers ([#599](https://togithub.com/kjur/jsrsasign/issues/599))
- default encryptionScheme is changed from des-EDE3-CBC to aes256-CBC
- default prf is changed from hmacWithSHA1 to hmacWithSHA256
- src/keyutil.js
- more encrypted [PKCS#8](https://togithub.com/PKCS/jsrsasign/issues/8) private key support
- KEYUTIL.getKey now supports encrypted [PKCS#8](https://togithub.com/PKCS/jsrsasign/issues/8) private key with
aes128-CBC, aes256-CBC encrypted and using hmacWithSHA224/256/384/512 as
psudorandom function.
- KEYUTIL.getPEM now supports such as above encrypted [PKCS#8](https://togithub.com/PKCS/jsrsasign/issues/8) PEM
priavte key.
- src/crypto.js
- Cipher.decrypt/encrypt now supports symmetric ciphers (des-EDE3-CBC,aes128-CBC,aes256-CBC)
- src/base64x.js
- function inttohex and twoscompl are added
- src/asn1.js
- ASN1Util.bigIntToMinTwosComplementsHex is now DEPRECATED. use twoscompl.
- src/asn1x509.js
- aes\*-CBC and hmacWithSHA\* OIDs are added
- test/qunit-do-{base64x,crypto-cipher,keyutil-eprv,keyutil,keyutil-p8egen}.html
- update and add some test cases for above
- stop bower support (bower.json removed)
### [`v10.8.6`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.6): X509.getExtSubjectDirectoryAttributes another bugfix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.5...10.8.6)
- Changes from 10.8.5 to 10.8.6 (2023-Apr-26)
- src/x509.js
- another bugfix X509.getExtSubjectDirectoryAttributes method
### [`v10.8.5`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.5): X509.getExtSubjectDirectoryAttributes bugfix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.4...10.8.5)
- Changes from 10.8.4 to 10.8.5 (2023-Apr-26)
- src/x509.js
- bugfix X509.getExtSubjectDirectoryAttributes method
### [`v10.8.4`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.4): more SubjectDirectoryExtension support
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.3...10.8.4)
- Changes from 10.8.3 to 10.8.4 (2023-Apr-26)
- src/asn1x509.js
- SubjectDirectoryAttributes class
- add array of array support for arbitrary attribute value
- src/x509.js
- add X509.getExtSubjectDirectoryAttributes method for
ExtSubjectDirectoryAttributes extension
- update X509.getExtParam method
- support SubjectDirectoryAttributes
- parse unknown extension as ASN.1
- src/base64x.js
- bugfix foldnl function: when length of s is multiple of n,
result has unnecessary new line in the end of string.
- qunit-do-{asn1x509,x509-ext,base64x,x500-param}.html
- update and add some test cases for above
### [`v10.8.3`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.3): CABF SMIMEBR OID support
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.2...10.8.3)
- Changes from 10.8.2 to 10.8.3 (2023-Apr-20)
- src/asn1x509.js
- Add OIDs for CABR S/MIME BR policy OIDs and GN givenName attribute type
### [`v10.8.2`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.2): RSA OAEP encryption fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.1...10.8.2)
- Changes from 10.8.1 to 10.8.2 (2023-Apr-15)
- ext/rsa.js
- fix RSAEncryptOAEP for RSA OAEP encryption [#582](https://togithub.com/kjur/jsrsasign/issues/582) [#583](https://togithub.com/kjur/jsrsasign/issues/583)
In rare cases, it have been generated ciphertext that
could not be decrpyted.
### [`v10.8.1`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.1): npm export missing fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.0...10.8.1)
- Changes from 10.8.0 to 10.8.1 (2023-Apr-09)
- npm/{package.json, lib/footer.js}
### [`v10.8.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.0): UserNotice of CertificatePolicies support and more
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.7.0...10.8.0)
- Changes from 10.7.0 to 10.8.0 (2023-Apr-8)
- x509.js
- X509.getUserNotice supports NoticeReference
- add asn1ToDisplayText method
- base64x.js
- add function msectozulu
- add aryval for nested JSON value access
- asn1.js
- DERInteger refactoring
- test/qunit-do-{asn1,asn1x509,base64x,x509-ext}.html
- update and add some test cases for above
### [`v10.7.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.7.0): custom X.509 extension support and utility functions
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.6.1...10.7.0)
- Changes from 10.6.1 to 10.7.0 (2023-Mar-12)
- x509.js
- add X509.registExtParser(): register custom extension parser
- base64x.js
- add utility functions
- b64topem() Base64 string to PEM
- pemtob64() PEM to Base64 string
- foldnl() wrap string to fit in specified width
- timetogen() align to UTCTime to GeneralizedTime
- test/qunit-do-{x509-ext,base64x}.html
- update and add some test cases for above
### [`v10.6.1`](https://togithub.com/kjur/jsrsasign/releases/tag/10.6.1): Add PolicyMappings, PolicyConstraints and InhibitAnyPolicy extension support
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.6.0...10.6.1)
- Changes from 10.6.0 to 10.6.1 (2022-Nov-20)
- asn1x509.js
- KJUR.asn1.x509.{PolicyMappings,PolicyConstraints,InhibitAnyPolicy} class added
- KJUR.asn1.x509.Extension updated to support
PolicyMappings, PolicyConstraints and InhibitAnyPolicy
- x509.js
- X509.getExt{PolicyMappings,PolicyConstraints,InhibitAnyPolicy} method added
- X509.getCriticalExtV utility method added
- X509.getExtParam updated to support
{PolicyMappings,PolicyConstraints,InhibitAnyPolicy}
- X509.getInfo updated to support
{PolicyMappings,PolicyConstraints,InhibitAnyPolicy}
- test/qunit-do-{asn1x509-tbscert,x509-ext,x509-getinfo,x509-param}.html
- update and add some test cases for above
### [`v10.6.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.6.0): StringPrep DN canonicalization support and some fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.27...10.6.0)
z\* Changes from 10.5.27 to 10.6.0 (2022-Nov-04)
- x509.js
- X509.getParam
- add support for optional parameter "dncanon" and "dnhex"
- X509.getInfo
- update representation for AltName
- X509.{getIssuer,getSubect}
- add support for optional argument flagCanon, flagHex
- X509.c14RDNArray added to convert from RDN array to canonicalized
DN name (a.k.a. StringPrep).
- X509.getX500Name
- API document updated
- X509.getOtherName
- member name changed from "other" to "value" for
consistency with KJUR.asn1.x509.OtherName class constructor.
- Also oid member value in return object will be an oid name if defined.
- X509.setCanonicalizedDN added to set "canon" member value
- asn1x509.js
- smtpUTF8Mailbox oid added to OID class
- API document fix
- asn1.js
- DERTaggedObject API document update
- test/qunit-do-{asn1x509,x509-ext,x509-getinfo,x509-param,x509}.html
- update some test cases for above
### [`v10.5.27`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.27): extend CertificationRequestInfo class for challengePassword and unstructuredName
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.26...10.5.27)
- Changes from 10.5.26 to 10.5.27 (2022-Aug-19)
- src/asn1csr.js
- CertificationRequestInfo class
- add support for challengePassword and unstructuredName ([#522](https://togithub.com/kjur/jsrsasign/issues/522))
- "attrs" member support in constructure argument
- test/qunit-do-asn1csr.html
### [`v10.5.26`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.26): CSRUtil class enhancement
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.25...10.5.26)
- Changes from 10.5.25 to 10.5.26 (2022-Jul-14)
- src/asn1csr.js
- CSRUtil.verifySignature method added
- CSRUtil.getParam enhanced to support optional argument flagTBS
- test/qunit-do-asn1csr.html
- update some test cases for above
### [`v10.5.25`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.25): CVE-2022-25898 Security fix in JWS and JWT validation
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.24...10.5.25)
- Changes from 10.5.24 to 10.5.25 (2022-Jun-23)
- src/jws.js
- JWS.verify and JWS.verifyJWT
- CVE-2022-25898 SECURITY FIX:
verify and verifyJWT may accept signature with special characters
or \number characters by mistake.
Please see security advisory:
https://github.com/kjur/jsrsasign/security/advisories/GHSA-3fvg-4v2m-98jf
- src/base64x.js
- function isBase64URLDot added
- test/qunit-do-jwt-veri.html
### [`v10.5.24`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.24): X509.getParam bugfix for v1 certificate
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.23...10.5.24)
- Changes from 10.5.23 to 10.5.24 (2022-Jun-04)
- src/x509.js
- X509.getParam bugfix for X.509v1 certificate without extension
### [`v10.5.23`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.23): BitString parsing bug fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.22...10.5.23)
- Changes from 10.5.22 to 10.5.23 (2022-May-27)
- src/base64x.js
- bitstrtobinstr bugfix fix
- src/asn1hex.js
- ASN1HEX.parse change for bin string range
- npm/lib/footers.js
- add missed exports (bitstrtobinstr, binstrtobitstr,
namearraytobinstr, extendClass)
- test/qunit-do-{asn1hex-parse,base64x}.html
- add and fix some test cases for above
### [`v10.5.22`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.22): DERBitString, KeyUsage and tsp PKIFailureInfo critical bug fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.21...10.5.22)
- Changes from 10.5.21 to 10.5.22 (2022-May-24)
- src/asn1.js
- DERBitString critical bugfix
- src/asn1tsp.js
- PKIFailureInfo critical bugfix
- src/asn1x509.js
- KeyUsage critical bugfix
- src/base64.x
- namearraytobinstr critical bugfix
- test/qunit-do-{asn1,asn1tsp,asn1x509,base64x}.html
- add and fix some test cases for above
### [`v10.5.21`](https://togithub.com/kjur/jsrsasign/compare/10.5.20...10.5.21)
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.20...10.5.21)
### [`v10.5.20`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.20): OCSP ResponderID object udpate
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.19...10.5.20)
- Changes from 10.5.19 to 10.5.20 (2022-Apr-25)
- src/asn1ocsp.js
- ResponderID class now also supports PEM certificate or
X509 object for key and name field.
- test/qunit-do-asn1ocsp.html
- add some test cases and fix for above
- remove silver sponsor
### [`v10.5.19`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.19): Time stamp package update
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.18...10.5.19)
- Changes from 10.5.18 to 10.5.19 (2022-Apr-23)
- src/asn1tsp.js
- TimeStampResp class update to statusinfo member
will be optional. If omitted, it will be "granted" by default.
- API manual update for more detail
### [`v10.5.18`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.18): Time stamp package update
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.17...10.5.18)
- Changes from 10.5.17 to 10.5.18 (2022-Apr-22)
- src/asn1tsp.js
- TSPParser.getTimeStampReq added
- TSPUtil.parse{TimeStampReq,MessageImprint} now *DEPRECATED*. Please use TSPParser.
- test/qunit-do-asn1tsp.html
- add some test cases and fix for above
### [`v10.5.17`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.17): CIDR subnet mask support in iptohex and hextoip
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.16...10.5.17)
- Changes from 10.5.16 to 10.5.17 (2022-Apr-14)
- src/asn1x509.js
- add IP address support in NameConstraints class
- bugfix in NameConstraints ip address
- wrong ASN.1 encoder in NameConstraints class bug fix (wrong explicit tag)
- src/base64x.js
- add CIDR subnet mask support in iptohex and hextoip
- iptohex, hextoip refactoring
- test/qunit-do-{x509-ext,base64x,asn1x509-tbscert,asn1x509}.html
- add some test cases and fix for above
### [`v10.5.16`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.16): Add NameConstraints extension and modify getEncodedHex to tohex
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.15...10.5.16)
- Changes from 10.5.15 to 10.5.16 (2022-Apr-08)
- src/asn1x509.js
- NameConstraints and GeneralSubtree class added
- add support for nameConstraints in Extensions class
- remove old GeneralName code
- src/x509.js
- getExtNameConstraints and getGeneralSubbtree method added
- add support for nameConstraints in getParam method
- X509.getParam supports optional arguments:
- tbshex: to return hexadecimal tbsCertificate value
- nodnarray: delete array member of subject and issuer
in the result.
- src/x509crl.js
- X509CRL.getParam supports optional arguments:
- tbshex: to return hexadecimal tbsCertList value
- nodnarray: delete array member of subject and issuer
in the result.
- src/asn1.js
- ASN1Object.tohex() method added
- ASN1Object.getEncodedHex() method is now DEPRECATED.
Please use ASN1Object.tohex() instead.
- clean up some codes
- src/\*.js
- update for ASN1Object.tohex()
- test/qunit-do-x509-ext.html
- getExtNameConstraints and getGeneralSubtree method test added
- test/qunit-do-asn1x509.html
- NameConstraints and GeneralSubtree class test added
- test/qunit-do-asn1-newobj.html
- int and tag test refactoring
- bugfix
### [`v10.5.15`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.15): X509.getExtCRLDistributionPointsURI small fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.14...10.5.15)
- Changes from 10.5.14 to 10.5.15 (2022-Apr-06)
- src/x509.js
- fix X509.getExtCRLDistributionPointsURI. This returns
undefined when no CDP extension as specified in document
even though it is deprecated method.
### [`v10.5.14`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.14): KEYUTIL.getPEM small fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.13...10.5.14)
- Changes from 10.5.13 to 10.5.14 (2022-Mar-28)
- src/keyutil.js
- fix KEYUTIL.getPEM when public key is not specified for ECDSA object.
optional public key field will be omitted in such case. ([#549](https://togithub.com/kjur/jsrsasign/issues/549))
- test/qunit-do-\*.html
- test case added for above updates.
### [`v10.5.13`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.13): RSA key private generation fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.12...10.5.13)
- Changes from 10.5.12 to 10.5.13 (2022-Mar-18)
- ext/rsa2.js
- fix RSAGenerate for checking |p - q| ([#546](https://togithub.com/kjur/jsrsasign/issues/546))
### [`v10.5.12`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.12): support ISO 8859-1 TeletexString and BMPString for X500Name
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.11...10.5.12)
- Changes from 10.5.11 to 10.5.12 (2022-Mar-13)
- src/asn1hex.js
- ASN1HEX.parse fixed for TeletexString and BMPString
- ASN1HEX.parse TeletexString supports non-ASCII
ISO 8859-1 Latin1 characters. Before this version,
only supports ASCII characters.
- hextoipv6 bug fix raised in some of enviroment
- src/base64x.js
- iso88591hextoutf8/utf8toiso88591hex added
- iso88591hextoutf8hex/utf8hextoiso88591hex added
- hextoipv6 fixed
- src/x509.js
- refactoring for X509.get{X500NameArray,RDN,AttrTypeAndValue}.
Add support for Teletex/BMPString and more attrTypes
- test/qunit-do-\*.html
- test case added for above updates.
- qunit-do-base64x: add iso8859-1 / utf-8 converter tests
- qunit-do-asn1hex-parse: add TeletexString parse tests
- qunit-do-x509-ext: add NumericString/TeletexString X500Name tests
### [`v10.5.11`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.11): asn1hex update
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.10...10.5.11)
- Changes from 10.5.10 to 10.5.11 (2022-Mar-12)
- src/ash1hex.js
- ASN1HEX.parse add NumericStiring(x12) support
- ASN1HEX.parse fix for "8x" tag (non structured tag)
- test/qunit-do-asn1hex.html
- test case added for above updates.
### [`v10.5.10`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.10): hextoipv6 fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.9...10.5.10)
- Changes from 10.5.9 to 10.5.10 (2022-Mar-10)
- src/base64x.js
- fix hextoipv6 for shrinking leading zeros ([#536](https://togithub.com/kjur/jsrsasign/issues/536))
- test/qunit-do-base64x.html
- test case added for above updates.
### [`v10.5.9`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.9): small fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.8...10.5.9)
- Changes from 10.5.8 to 10.5.9 (2022-Mar-10)
- src/base64x.js
- fix zulutosec ([#538](https://togithub.com/kjur/jsrsasign/issues/538))
- src/asn1csr.js
- fix CSRUtil.getParam ([#544](https://togithub.com/kjur/jsrsasign/issues/544))
- test/qunit-do-{base64x,asn1csr}.html
- test case update for above updates.
### [`v10.5.8`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.8): OCSP CertID and X509 class update
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.7...10.5.8)
- Changes from 10.5.7 to 10.5.8 (2022-Feb-25)
- src/asn1ocsp.js
- CertID class refactoring
- CertID.getParamByCerts method added
- src/x509.js
- DEPRECATED getPublicKeyHex method (use getSPKI instead)
- getSPKI, getSPKIValue method added
- getExtCRLDistributionPointsURI bugfix
- API document fix
- test/qunit-do-{asn1ocsp,x509-ext,x509,x509-v1}.html
- test case update and bugfix for above updates.
### [`v10.5.7`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.7): X509CRL.findRevCert bugfix for empty revCerts
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.6...10.5.7)
- Changes from 10.5.6 to 10.5.7 (2022-Feb-19)
- src/x509crl.js
- X509CRL.{findRevCert,findRevCertBySN} method fix for empty revCerts
### [`v10.5.6`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.6): X509CRL.findRevCert bugfix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.5...10.5.6)
- Changes from 10.5.5 to 10.5.6 (2022-Feb-17)
- src/x509crl.js X509CRL class
- fix sn error in findRevCert
### [`v10.5.5`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.5): CRL parser update
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.4...10.5.5)
- Changes from 10.5.4 to 10.5.5 (2022-Feb-17)
- src/x509crl.js X509CRL class
- add getIssuerHex method
- add findRevCert method
- add findRevCertBySN method
- test/x509crl.html update
### [`v10.5.4`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.4): ASN.1 parser update and fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.3...10.5.4)
- Changes from 10.5.3 to 10.5.4 (2022-Feb-15)
- src/asn1.js
- DERTaggedObject
- refactoring
- add {tag: xx, str:"aaa"} parameter support
- add {tag: xx, hex:"616161"} parameter support
- setASN1Object method now *deprecated*. Please use setByParam
- src/asn1hex.js
- ASN1HEX.parse
- add encapsulated OctetString, BitString support
- add encapsulated structured TaggedObject support
- changed to return binary string for 3byte or less BitString value
- ObjectIdentifier fix when undefined OID name
- src/base64x.js
- added bitstrtobinstr/binstrtobitstr
- utf8tohex fix for lower case hexadecimal string
- hextoutf8 fix for improper hexadecimal string for UTF-8
- bitstrtoint/inttobitstr fix for error case return
- test/qunit-do-asn1.html
- TaggedObject test case update
- test/qunit-do-asn1hex-parse.html
- BitString, TaggedObject test case update
- test/qunit-do-base64x.html
- hextoutf8/utf8tohex testcase update
- bitstrtobinstr/binstrtobitstr testcase added
### [`v10.5.3`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.3): add OtherName support in GeneralName
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.2...10.5.3)
- Changes from 10.5.2 to 10.5.3 (2022-Feb-10)
- add otherName support in GeneralName by PR
with small update ([#535](https://togithub.com/kjur/jsrsasign/issues/535))
- src/asn1x509.js
- add otherName of GeneralName support ([#535](https://togithub.com/kjur/jsrsasign/issues/535))
- GeneralName class refactoring
- add OtherName class
- src/x509.js
- add otherName of GeneralName support
- src/asn1hex.js
- add ASN1HEX.parse method
- src/asn1.js
- API doc and error exception fix
- test/qunit-do-{asn1x509,x509-ext}.html
- test case added
- test/qunit-do-asn1hex-parse.html added
### [`v10.5.2`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.2): small update for OID and JWK
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.1...10.5.2)
- Changes from 10.5.1 to 10.5.2 (2022-Feb-08)
- src/asn1x509.js
- add OID.{registerOIDs,checkOIDs} method
- src/keyutil.js
- getJWK, getJWKFromKey API doc update
- test/qunit-do-asn1x509.html updated
- test case added
### [`v10.5.1`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.1): add KEYUTIL.getJWK, fix EC P-521 concat signature value and add support for P-521 JWS JWK
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.0...10.5.1)
- Changes from 10.5.0 to 10.5.1 (2021-Dec-01)
- fix ECC P-521 curve issues ([#528](https://togithub.com/kjur/jsrsasign/issues/528))
- src/ecdsa-modified.js
- asn1SigToConcatSig fix P521 issue
- concatSigToASN1Sig fix P521 issue
- src/jws.js
- add ES512 support
- src/keyutil.js
- fix P-521 issue in getKey,getJWKFromKey,
- tool/tool_jwt.html
- add ES512 support
- test/qunit-do-ecdsamod-s.html
- add P-521 asn1SigToConcatSig tests
- add P-521 concatSigToASN1Sig tests
- test/qunit-do-ecdsamod.html
- add sha512 tests
- test/qunit-do-jws-sign.html
- add signing and verification ES512 test
- test/qunit-do-keyutil-ec.html
- add P-521 key test
- test/qunit-do-keyutil-jwk.html
- add P-521 private key test
- test/qunit-do-x509-key.html
- add P-521 certificate test
- JWK from X509 certificate ([#529](https://togithub.com/kjur/jsrsasign/issues/529))
- this PR was merged but
- X509.getPublicKeyJWK was moved to KEYUTIL.getJWK
- some tests in qunit-do-x509-jwk was moved to
qunit-do-keyutil-jwk
- readCertJWK was removed
- src/keyutil
- KEYUTIL.getJWK added and x5c/x5t/x5t#S256/kid member support
- KEYUTIL.getJWKFromKey now deprecated
- src/ecdsa-modified.js
- missing variable definition fix ([#527](https://togithub.com/kjur/jsrsasign/issues/527))
- test/qunit-do-x509.html test error fix
- Great appreciate for [@cplussharp](https://togithub.com/cplussharp) 's contribution.
### [`v10.5.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.0): Add EC support for secp521r1 secp224r1 secp192r1
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.4.1...10.5.0)
- Changes from 10.4.1 to 10.5.0
- Add EC support for secp521r1 secp224r1 secp192r1 ([#521](https://togithub.com/kjur/jsrsasign/issues/521) [#519](https://togithub.com/kjur/jsrsasign/issues/519))
Thank you indeed for [@cplussharp](https://togithub.com/cplussharp) 's great work.
- EC key length bugs for newly supported curves are fixed.
- src/ecdsa-modified: key length fixes
- src/ecparam.js: add keycharlen property
- src/asn1x509.js: add secp521r1 OID
- test/qunit-do-ecdsamod.html: all test code passed
- test/qunit-do-ecdsamod-unsupport.html: all test code passed
- test/qunit-do-ecdsamod-s.html: all test code passed
- test/qunit-do-ecdsamod-nisttv.html: added for NIST EC keygen test
- sample/sample-ecdsa.html: add P-521
- sample/sample-rsasign.html
- fix to trim non hexadecimal strings ([#517](https://togithub.com/kjur/jsrsasign/issues/517))
### [`v10.4.1`](https://togithub.com/kjur/jsrsasign/releases/tag/10.4.1): GeneralizedTime, UTCTime refactoring and some bug fix
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.4.0...10.4.1)
- Changes from 10.4.0 to 10.4.1 release
- src/asn1.js
- refactoring of DERUTCTime, DERGeneralizedTime and DERAbstractTime
- now DERUTCTime support fraction of second
- src/asn1x509.js
- update Time class to follow DER{UTC,Generalized}Time update
- tool/tool_tsreq.html
- messageImprint bug fix ([#504](https://togithub.com/kjur/jsrsasign/issues/504))
- tool/tool_tsres.html
- serialNumber bug fix ([#505](https://togithub.com/kjur/jsrsasign/issues/505))
- jsrsasign-\*-min.js
- header URL fix to kjur.github.io ([#503](https://togithub.com/kjur/jsrsasign/issues/503))
(will be fixed in next release while rebuild)
- test/qunit-do-{asn1,asn1x509}.html updated
- KJUR.asn1.DER{UTC,Generalized}Time, KJUR.asn1.x509.Time class
test case added and updated.
### [`v10.4.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.4.0): Full support for parsing OCSP response
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.3.2...10.4.0)
- Changes from 10.3.2 to 10.4.0 (2021-08-17)
- asn1ocsp.js
- add OCSP response parser support in OCSPParser class (request [#501](https://togithub.com/kjur/jsrsasign/issues/501))
- OCSPParser.get{OCSPResponse,ResponseBytes,BasicOCSPResponse,ResponseData,ResponderID,SingleResponseList,SingleResponse,CertStatus} methods added
- DEPRECATED: OCSPUtil.getOCSPResponseInfo
- test/qunit-do-asn1ocsp.html updated
- add test for OCSP response parser
### [`v10.3.2`](https://togithub.com/kjur/jsrsasign/releases/tag/10.3.2): fix wrong OCSPRequest for EC public key certificate
[Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.3.0...10.3.2)
- Changes from 10.3.1 to 10.3.2
- asn1ocsp.js
- CertID.setByCert fixed for issuer EC public key ([#500](https://togithub.com/kjur/jsrsasign/issues/500))
[ ] If you want to rebase/retry this PR, check this box
This PR contains the following updates:
^10.3.0
->^11.0.0
By merging this PR, the issue #1484 will be automatically resolved and closed:
Release Notes
kjur/jsrsasign (jsrsasign)
### [`v11.0.0`](https://togithub.com/kjur/jsrsasign/releases/tag/11.0.0): remove RSA and RSAOAEP encryption for Marvin attack [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.9.0...11.0.0) - Changes from 10.9.0 to 11.0.0 (2024-Jan-16) - remove RSA [PKCS#1](https://togithub.com/PKCS/jsrsasign/issues/1).5 end OAEP encryption/decryption for Marvin attack ([#598](https://togithub.com/kjur/jsrsasign/issues/598)) - src/crypto.js - remove KJUR.crypto.Cipher class for RSA and RSAOAEP encryption/decryption - ext/{rsa,rsa2}.js remove encrypt/decrypt/encryptOAEP/decryptOAEP for RSAKey class ### [`v10.9.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.9.0): enhanced support for encrypted PKCS8 [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.6...10.9.0) - Changes from 10.8.6 to 10.9.0 (2023-Nov-27) - KEYUTIL.getPEM is updated not to use weak ciphers ([#599](https://togithub.com/kjur/jsrsasign/issues/599)) - default encryptionScheme is changed from des-EDE3-CBC to aes256-CBC - default prf is changed from hmacWithSHA1 to hmacWithSHA256 - src/keyutil.js - more encrypted [PKCS#8](https://togithub.com/PKCS/jsrsasign/issues/8) private key support - KEYUTIL.getKey now supports encrypted [PKCS#8](https://togithub.com/PKCS/jsrsasign/issues/8) private key with aes128-CBC, aes256-CBC encrypted and using hmacWithSHA224/256/384/512 as psudorandom function. - KEYUTIL.getPEM now supports such as above encrypted [PKCS#8](https://togithub.com/PKCS/jsrsasign/issues/8) PEM priavte key. - src/crypto.js - Cipher.decrypt/encrypt now supports symmetric ciphers (des-EDE3-CBC,aes128-CBC,aes256-CBC) - src/base64x.js - function inttohex and twoscompl are added - src/asn1.js - ASN1Util.bigIntToMinTwosComplementsHex is now DEPRECATED. use twoscompl. - src/asn1x509.js - aes\*-CBC and hmacWithSHA\* OIDs are added - test/qunit-do-{base64x,crypto-cipher,keyutil-eprv,keyutil,keyutil-p8egen}.html - update and add some test cases for above - stop bower support (bower.json removed) ### [`v10.8.6`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.6): X509.getExtSubjectDirectoryAttributes another bugfix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.5...10.8.6) - Changes from 10.8.5 to 10.8.6 (2023-Apr-26) - src/x509.js - another bugfix X509.getExtSubjectDirectoryAttributes method ### [`v10.8.5`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.5): X509.getExtSubjectDirectoryAttributes bugfix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.4...10.8.5) - Changes from 10.8.4 to 10.8.5 (2023-Apr-26) - src/x509.js - bugfix X509.getExtSubjectDirectoryAttributes method ### [`v10.8.4`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.4): more SubjectDirectoryExtension support [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.3...10.8.4) - Changes from 10.8.3 to 10.8.4 (2023-Apr-26) - src/asn1x509.js - SubjectDirectoryAttributes class - add array of array support for arbitrary attribute value - src/x509.js - add X509.getExtSubjectDirectoryAttributes method for ExtSubjectDirectoryAttributes extension - update X509.getExtParam method - support SubjectDirectoryAttributes - parse unknown extension as ASN.1 - src/base64x.js - bugfix foldnl function: when length of s is multiple of n, result has unnecessary new line in the end of string. - qunit-do-{asn1x509,x509-ext,base64x,x500-param}.html - update and add some test cases for above ### [`v10.8.3`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.3): CABF SMIMEBR OID support [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.2...10.8.3) - Changes from 10.8.2 to 10.8.3 (2023-Apr-20) - src/asn1x509.js - Add OIDs for CABR S/MIME BR policy OIDs and GN givenName attribute type ### [`v10.8.2`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.2): RSA OAEP encryption fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.1...10.8.2) - Changes from 10.8.1 to 10.8.2 (2023-Apr-15) - ext/rsa.js - fix RSAEncryptOAEP for RSA OAEP encryption [#582](https://togithub.com/kjur/jsrsasign/issues/582) [#583](https://togithub.com/kjur/jsrsasign/issues/583) In rare cases, it have been generated ciphertext that could not be decrpyted. ### [`v10.8.1`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.1): npm export missing fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.8.0...10.8.1) - Changes from 10.8.0 to 10.8.1 (2023-Apr-09) - npm/{package.json, lib/footer.js} ### [`v10.8.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.8.0): UserNotice of CertificatePolicies support and more [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.7.0...10.8.0) - Changes from 10.7.0 to 10.8.0 (2023-Apr-8) - x509.js - X509.getUserNotice supports NoticeReference - add asn1ToDisplayText method - base64x.js - add function msectozulu - add aryval for nested JSON value access - asn1.js - DERInteger refactoring - test/qunit-do-{asn1,asn1x509,base64x,x509-ext}.html - update and add some test cases for above ### [`v10.7.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.7.0): custom X.509 extension support and utility functions [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.6.1...10.7.0) - Changes from 10.6.1 to 10.7.0 (2023-Mar-12) - x509.js - add X509.registExtParser(): register custom extension parser - base64x.js - add utility functions - b64topem() Base64 string to PEM - pemtob64() PEM to Base64 string - foldnl() wrap string to fit in specified width - timetogen() align to UTCTime to GeneralizedTime - test/qunit-do-{x509-ext,base64x}.html - update and add some test cases for above ### [`v10.6.1`](https://togithub.com/kjur/jsrsasign/releases/tag/10.6.1): Add PolicyMappings, PolicyConstraints and InhibitAnyPolicy extension support [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.6.0...10.6.1) - Changes from 10.6.0 to 10.6.1 (2022-Nov-20) - asn1x509.js - KJUR.asn1.x509.{PolicyMappings,PolicyConstraints,InhibitAnyPolicy} class added - KJUR.asn1.x509.Extension updated to support PolicyMappings, PolicyConstraints and InhibitAnyPolicy - x509.js - X509.getExt{PolicyMappings,PolicyConstraints,InhibitAnyPolicy} method added - X509.getCriticalExtV utility method added - X509.getExtParam updated to support {PolicyMappings,PolicyConstraints,InhibitAnyPolicy} - X509.getInfo updated to support {PolicyMappings,PolicyConstraints,InhibitAnyPolicy} - test/qunit-do-{asn1x509-tbscert,x509-ext,x509-getinfo,x509-param}.html - update and add some test cases for above ### [`v10.6.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.6.0): StringPrep DN canonicalization support and some fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.27...10.6.0) z\* Changes from 10.5.27 to 10.6.0 (2022-Nov-04) - x509.js - X509.getParam - add support for optional parameter "dncanon" and "dnhex" - X509.getInfo - update representation for AltName - X509.{getIssuer,getSubect} - add support for optional argument flagCanon, flagHex - X509.c14RDNArray added to convert from RDN array to canonicalized DN name (a.k.a. StringPrep). - X509.getX500Name - API document updated - X509.getOtherName - member name changed from "other" to "value" for consistency with KJUR.asn1.x509.OtherName class constructor. - Also oid member value in return object will be an oid name if defined. - X509.setCanonicalizedDN added to set "canon" member value - asn1x509.js - smtpUTF8Mailbox oid added to OID class - API document fix - asn1.js - DERTaggedObject API document update - test/qunit-do-{asn1x509,x509-ext,x509-getinfo,x509-param,x509}.html - update some test cases for above ### [`v10.5.27`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.27): extend CertificationRequestInfo class for challengePassword and unstructuredName [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.26...10.5.27) - Changes from 10.5.26 to 10.5.27 (2022-Aug-19) - src/asn1csr.js - CertificationRequestInfo class - add support for challengePassword and unstructuredName ([#522](https://togithub.com/kjur/jsrsasign/issues/522)) - "attrs" member support in constructure argument - test/qunit-do-asn1csr.html ### [`v10.5.26`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.26): CSRUtil class enhancement [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.25...10.5.26) - Changes from 10.5.25 to 10.5.26 (2022-Jul-14) - src/asn1csr.js - CSRUtil.verifySignature method added - CSRUtil.getParam enhanced to support optional argument flagTBS - test/qunit-do-asn1csr.html - update some test cases for above ### [`v10.5.25`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.25): CVE-2022-25898 Security fix in JWS and JWT validation [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.24...10.5.25) - Changes from 10.5.24 to 10.5.25 (2022-Jun-23) - src/jws.js - JWS.verify and JWS.verifyJWT - CVE-2022-25898 SECURITY FIX: verify and verifyJWT may accept signature with special characters or \number characters by mistake. Please see security advisory: https://github.com/kjur/jsrsasign/security/advisories/GHSA-3fvg-4v2m-98jf - src/base64x.js - function isBase64URLDot added - test/qunit-do-jwt-veri.html ### [`v10.5.24`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.24): X509.getParam bugfix for v1 certificate [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.23...10.5.24) - Changes from 10.5.23 to 10.5.24 (2022-Jun-04) - src/x509.js - X509.getParam bugfix for X.509v1 certificate without extension ### [`v10.5.23`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.23): BitString parsing bug fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.22...10.5.23) - Changes from 10.5.22 to 10.5.23 (2022-May-27) - src/base64x.js - bitstrtobinstr bugfix fix - src/asn1hex.js - ASN1HEX.parse change for bin string range - npm/lib/footers.js - add missed exports (bitstrtobinstr, binstrtobitstr, namearraytobinstr, extendClass) - test/qunit-do-{asn1hex-parse,base64x}.html - add and fix some test cases for above ### [`v10.5.22`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.22): DERBitString, KeyUsage and tsp PKIFailureInfo critical bug fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.21...10.5.22) - Changes from 10.5.21 to 10.5.22 (2022-May-24) - src/asn1.js - DERBitString critical bugfix - src/asn1tsp.js - PKIFailureInfo critical bugfix - src/asn1x509.js - KeyUsage critical bugfix - src/base64.x - namearraytobinstr critical bugfix - test/qunit-do-{asn1,asn1tsp,asn1x509,base64x}.html - add and fix some test cases for above ### [`v10.5.21`](https://togithub.com/kjur/jsrsasign/compare/10.5.20...10.5.21) [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.20...10.5.21) ### [`v10.5.20`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.20): OCSP ResponderID object udpate [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.19...10.5.20) - Changes from 10.5.19 to 10.5.20 (2022-Apr-25) - src/asn1ocsp.js - ResponderID class now also supports PEM certificate or X509 object for key and name field. - test/qunit-do-asn1ocsp.html - add some test cases and fix for above - remove silver sponsor ### [`v10.5.19`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.19): Time stamp package update [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.18...10.5.19) - Changes from 10.5.18 to 10.5.19 (2022-Apr-23) - src/asn1tsp.js - TimeStampResp class update to statusinfo member will be optional. If omitted, it will be "granted" by default. - API manual update for more detail ### [`v10.5.18`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.18): Time stamp package update [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.17...10.5.18) - Changes from 10.5.17 to 10.5.18 (2022-Apr-22) - src/asn1tsp.js - TSPParser.getTimeStampReq added - TSPUtil.parse{TimeStampReq,MessageImprint} now *DEPRECATED*. Please use TSPParser. - test/qunit-do-asn1tsp.html - add some test cases and fix for above ### [`v10.5.17`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.17): CIDR subnet mask support in iptohex and hextoip [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.16...10.5.17) - Changes from 10.5.16 to 10.5.17 (2022-Apr-14) - src/asn1x509.js - add IP address support in NameConstraints class - bugfix in NameConstraints ip address - wrong ASN.1 encoder in NameConstraints class bug fix (wrong explicit tag) - src/base64x.js - add CIDR subnet mask support in iptohex and hextoip - iptohex, hextoip refactoring - test/qunit-do-{x509-ext,base64x,asn1x509-tbscert,asn1x509}.html - add some test cases and fix for above ### [`v10.5.16`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.16): Add NameConstraints extension and modify getEncodedHex to tohex [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.15...10.5.16) - Changes from 10.5.15 to 10.5.16 (2022-Apr-08) - src/asn1x509.js - NameConstraints and GeneralSubtree class added - add support for nameConstraints in Extensions class - remove old GeneralName code - src/x509.js - getExtNameConstraints and getGeneralSubbtree method added - add support for nameConstraints in getParam method - X509.getParam supports optional arguments: - tbshex: to return hexadecimal tbsCertificate value - nodnarray: delete array member of subject and issuer in the result. - src/x509crl.js - X509CRL.getParam supports optional arguments: - tbshex: to return hexadecimal tbsCertList value - nodnarray: delete array member of subject and issuer in the result. - src/asn1.js - ASN1Object.tohex() method added - ASN1Object.getEncodedHex() method is now DEPRECATED. Please use ASN1Object.tohex() instead. - clean up some codes - src/\*.js - update for ASN1Object.tohex() - test/qunit-do-x509-ext.html - getExtNameConstraints and getGeneralSubtree method test added - test/qunit-do-asn1x509.html - NameConstraints and GeneralSubtree class test added - test/qunit-do-asn1-newobj.html - int and tag test refactoring - bugfix ### [`v10.5.15`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.15): X509.getExtCRLDistributionPointsURI small fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.14...10.5.15) - Changes from 10.5.14 to 10.5.15 (2022-Apr-06) - src/x509.js - fix X509.getExtCRLDistributionPointsURI. This returns undefined when no CDP extension as specified in document even though it is deprecated method. ### [`v10.5.14`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.14): KEYUTIL.getPEM small fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.13...10.5.14) - Changes from 10.5.13 to 10.5.14 (2022-Mar-28) - src/keyutil.js - fix KEYUTIL.getPEM when public key is not specified for ECDSA object. optional public key field will be omitted in such case. ([#549](https://togithub.com/kjur/jsrsasign/issues/549)) - test/qunit-do-\*.html - test case added for above updates. ### [`v10.5.13`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.13): RSA key private generation fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.12...10.5.13) - Changes from 10.5.12 to 10.5.13 (2022-Mar-18) - ext/rsa2.js - fix RSAGenerate for checking |p - q| ([#546](https://togithub.com/kjur/jsrsasign/issues/546)) ### [`v10.5.12`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.12): support ISO 8859-1 TeletexString and BMPString for X500Name [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.11...10.5.12) - Changes from 10.5.11 to 10.5.12 (2022-Mar-13) - src/asn1hex.js - ASN1HEX.parse fixed for TeletexString and BMPString - ASN1HEX.parse TeletexString supports non-ASCII ISO 8859-1 Latin1 characters. Before this version, only supports ASCII characters. - hextoipv6 bug fix raised in some of enviroment - src/base64x.js - iso88591hextoutf8/utf8toiso88591hex added - iso88591hextoutf8hex/utf8hextoiso88591hex added - hextoipv6 fixed - src/x509.js - refactoring for X509.get{X500NameArray,RDN,AttrTypeAndValue}. Add support for Teletex/BMPString and more attrTypes - test/qunit-do-\*.html - test case added for above updates. - qunit-do-base64x: add iso8859-1 / utf-8 converter tests - qunit-do-asn1hex-parse: add TeletexString parse tests - qunit-do-x509-ext: add NumericString/TeletexString X500Name tests ### [`v10.5.11`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.11): asn1hex update [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.10...10.5.11) - Changes from 10.5.10 to 10.5.11 (2022-Mar-12) - src/ash1hex.js - ASN1HEX.parse add NumericStiring(x12) support - ASN1HEX.parse fix for "8x" tag (non structured tag) - test/qunit-do-asn1hex.html - test case added for above updates. ### [`v10.5.10`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.10): hextoipv6 fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.9...10.5.10) - Changes from 10.5.9 to 10.5.10 (2022-Mar-10) - src/base64x.js - fix hextoipv6 for shrinking leading zeros ([#536](https://togithub.com/kjur/jsrsasign/issues/536)) - test/qunit-do-base64x.html - test case added for above updates. ### [`v10.5.9`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.9): small fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.8...10.5.9) - Changes from 10.5.8 to 10.5.9 (2022-Mar-10) - src/base64x.js - fix zulutosec ([#538](https://togithub.com/kjur/jsrsasign/issues/538)) - src/asn1csr.js - fix CSRUtil.getParam ([#544](https://togithub.com/kjur/jsrsasign/issues/544)) - test/qunit-do-{base64x,asn1csr}.html - test case update for above updates. ### [`v10.5.8`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.8): OCSP CertID and X509 class update [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.7...10.5.8) - Changes from 10.5.7 to 10.5.8 (2022-Feb-25) - src/asn1ocsp.js - CertID class refactoring - CertID.getParamByCerts method added - src/x509.js - DEPRECATED getPublicKeyHex method (use getSPKI instead) - getSPKI, getSPKIValue method added - getExtCRLDistributionPointsURI bugfix - API document fix - test/qunit-do-{asn1ocsp,x509-ext,x509,x509-v1}.html - test case update and bugfix for above updates. ### [`v10.5.7`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.7): X509CRL.findRevCert bugfix for empty revCerts [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.6...10.5.7) - Changes from 10.5.6 to 10.5.7 (2022-Feb-19) - src/x509crl.js - X509CRL.{findRevCert,findRevCertBySN} method fix for empty revCerts ### [`v10.5.6`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.6): X509CRL.findRevCert bugfix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.5...10.5.6) - Changes from 10.5.5 to 10.5.6 (2022-Feb-17) - src/x509crl.js X509CRL class - fix sn error in findRevCert ### [`v10.5.5`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.5): CRL parser update [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.4...10.5.5) - Changes from 10.5.4 to 10.5.5 (2022-Feb-17) - src/x509crl.js X509CRL class - add getIssuerHex method - add findRevCert method - add findRevCertBySN method - test/x509crl.html update ### [`v10.5.4`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.4): ASN.1 parser update and fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.3...10.5.4) - Changes from 10.5.3 to 10.5.4 (2022-Feb-15) - src/asn1.js - DERTaggedObject - refactoring - add {tag: xx, str:"aaa"} parameter support - add {tag: xx, hex:"616161"} parameter support - setASN1Object method now *deprecated*. Please use setByParam - src/asn1hex.js - ASN1HEX.parse - add encapsulated OctetString, BitString support - add encapsulated structured TaggedObject support - changed to return binary string for 3byte or less BitString value - ObjectIdentifier fix when undefined OID name - src/base64x.js - added bitstrtobinstr/binstrtobitstr - utf8tohex fix for lower case hexadecimal string - hextoutf8 fix for improper hexadecimal string for UTF-8 - bitstrtoint/inttobitstr fix for error case return - test/qunit-do-asn1.html - TaggedObject test case update - test/qunit-do-asn1hex-parse.html - BitString, TaggedObject test case update - test/qunit-do-base64x.html - hextoutf8/utf8tohex testcase update - bitstrtobinstr/binstrtobitstr testcase added ### [`v10.5.3`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.3): add OtherName support in GeneralName [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.2...10.5.3) - Changes from 10.5.2 to 10.5.3 (2022-Feb-10) - add otherName support in GeneralName by PR with small update ([#535](https://togithub.com/kjur/jsrsasign/issues/535)) - src/asn1x509.js - add otherName of GeneralName support ([#535](https://togithub.com/kjur/jsrsasign/issues/535)) - GeneralName class refactoring - add OtherName class - src/x509.js - add otherName of GeneralName support - src/asn1hex.js - add ASN1HEX.parse method - src/asn1.js - API doc and error exception fix - test/qunit-do-{asn1x509,x509-ext}.html - test case added - test/qunit-do-asn1hex-parse.html added ### [`v10.5.2`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.2): small update for OID and JWK [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.1...10.5.2) - Changes from 10.5.1 to 10.5.2 (2022-Feb-08) - src/asn1x509.js - add OID.{registerOIDs,checkOIDs} method - src/keyutil.js - getJWK, getJWKFromKey API doc update - test/qunit-do-asn1x509.html updated - test case added ### [`v10.5.1`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.1): add KEYUTIL.getJWK, fix EC P-521 concat signature value and add support for P-521 JWS JWK [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.5.0...10.5.1) - Changes from 10.5.0 to 10.5.1 (2021-Dec-01) - fix ECC P-521 curve issues ([#528](https://togithub.com/kjur/jsrsasign/issues/528)) - src/ecdsa-modified.js - asn1SigToConcatSig fix P521 issue - concatSigToASN1Sig fix P521 issue - src/jws.js - add ES512 support - src/keyutil.js - fix P-521 issue in getKey,getJWKFromKey, - tool/tool_jwt.html - add ES512 support - test/qunit-do-ecdsamod-s.html - add P-521 asn1SigToConcatSig tests - add P-521 concatSigToASN1Sig tests - test/qunit-do-ecdsamod.html - add sha512 tests - test/qunit-do-jws-sign.html - add signing and verification ES512 test - test/qunit-do-keyutil-ec.html - add P-521 key test - test/qunit-do-keyutil-jwk.html - add P-521 private key test - test/qunit-do-x509-key.html - add P-521 certificate test - JWK from X509 certificate ([#529](https://togithub.com/kjur/jsrsasign/issues/529)) - this PR was merged but - X509.getPublicKeyJWK was moved to KEYUTIL.getJWK - some tests in qunit-do-x509-jwk was moved to qunit-do-keyutil-jwk - readCertJWK was removed - src/keyutil - KEYUTIL.getJWK added and x5c/x5t/x5t#S256/kid member support - KEYUTIL.getJWKFromKey now deprecated - src/ecdsa-modified.js - missing variable definition fix ([#527](https://togithub.com/kjur/jsrsasign/issues/527)) - test/qunit-do-x509.html test error fix - Great appreciate for [@cplussharp](https://togithub.com/cplussharp) 's contribution. ### [`v10.5.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.5.0): Add EC support for secp521r1 secp224r1 secp192r1 [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.4.1...10.5.0) - Changes from 10.4.1 to 10.5.0 - Add EC support for secp521r1 secp224r1 secp192r1 ([#521](https://togithub.com/kjur/jsrsasign/issues/521) [#519](https://togithub.com/kjur/jsrsasign/issues/519)) Thank you indeed for [@cplussharp](https://togithub.com/cplussharp) 's great work. - EC key length bugs for newly supported curves are fixed. - src/ecdsa-modified: key length fixes - src/ecparam.js: add keycharlen property - src/asn1x509.js: add secp521r1 OID - test/qunit-do-ecdsamod.html: all test code passed - test/qunit-do-ecdsamod-unsupport.html: all test code passed - test/qunit-do-ecdsamod-s.html: all test code passed - test/qunit-do-ecdsamod-nisttv.html: added for NIST EC keygen test - sample/sample-ecdsa.html: add P-521 - sample/sample-rsasign.html - fix to trim non hexadecimal strings ([#517](https://togithub.com/kjur/jsrsasign/issues/517)) ### [`v10.4.1`](https://togithub.com/kjur/jsrsasign/releases/tag/10.4.1): GeneralizedTime, UTCTime refactoring and some bug fix [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.4.0...10.4.1) - Changes from 10.4.0 to 10.4.1 release - src/asn1.js - refactoring of DERUTCTime, DERGeneralizedTime and DERAbstractTime - now DERUTCTime support fraction of second - src/asn1x509.js - update Time class to follow DER{UTC,Generalized}Time update - tool/tool_tsreq.html - messageImprint bug fix ([#504](https://togithub.com/kjur/jsrsasign/issues/504)) - tool/tool_tsres.html - serialNumber bug fix ([#505](https://togithub.com/kjur/jsrsasign/issues/505)) - jsrsasign-\*-min.js - header URL fix to kjur.github.io ([#503](https://togithub.com/kjur/jsrsasign/issues/503)) (will be fixed in next release while rebuild) - test/qunit-do-{asn1,asn1x509}.html updated - KJUR.asn1.DER{UTC,Generalized}Time, KJUR.asn1.x509.Time class test case added and updated. ### [`v10.4.0`](https://togithub.com/kjur/jsrsasign/releases/tag/10.4.0): Full support for parsing OCSP response [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.3.2...10.4.0) - Changes from 10.3.2 to 10.4.0 (2021-08-17) - asn1ocsp.js - add OCSP response parser support in OCSPParser class (request [#501](https://togithub.com/kjur/jsrsasign/issues/501)) - OCSPParser.get{OCSPResponse,ResponseBytes,BasicOCSPResponse,ResponseData,ResponderID,SingleResponseList,SingleResponse,CertStatus} methods added - DEPRECATED: OCSPUtil.getOCSPResponseInfo - test/qunit-do-asn1ocsp.html updated - add test for OCSP response parser ### [`v10.3.2`](https://togithub.com/kjur/jsrsasign/releases/tag/10.3.2): fix wrong OCSPRequest for EC public key certificate [Compare Source](https://togithub.com/kjur/jsrsasign/compare/10.3.0...10.3.2) - Changes from 10.3.1 to 10.3.2 - asn1ocsp.js - CertID.setByCert fixed for issuer EC public key ([#500](https://togithub.com/kjur/jsrsasign/issues/500))