Release 0.3.0 BETA5

Release of version 0.3.0 BETA5

Please note that this is an eID software beta version.
The software may not work properly and some faults may occur.

Changes

• Added validation for matching time-stamp with signature #98722280
• Added validation for the case when two data files are with same name and only one is signed #105211272
• Added including OCSP confirmation for DDoc LT_TM signatures #103395848
• Added validation check that OCSP response should be after time-stamp for BDoc containers #84683484
• Fixed removing signatures from the container #91601974
• Extracted BDoc container validation code into smaller classes.
• Fixed couple of failing unit tests

Known issues

• 2 unit tests are temporarily failing
• Many of the DSS unit tests are broken because OCSP response is required in BDOC

Release 0.3.0 BETA4

Release of version 0.3.0 BETA4

Please note that this is an eID software beta version.
The software may not work properly and some faults may occur.

Changes

• Updated Javadoc according to the new API #103766598
• Added validation support for RSA 2047 bit keys #100938144
• Fixed duplicate signature xml file exception when adding signatures to jDigiDoc container #105288968
• Renamed Signature.getRawSignature to getAdESSignature
• Improved logging
• Improved handling of empty OCSP response

Known issues

• 7 unit tests are temporarily failing
• Many of the DSS unit tests are broken because OCSP response is required in BDOC
• DigiDoc4j UriEncodingTest and MultiSignatureThreadSafetyTest are broken because test signing certificate is expired

Release 0.3.0 BETA3

Release of version 0.3.0 BETA3

Please note that this is an eID software beta version.
The software may not work properly and some faults may occur.

Changes

• Fixed NullPointerException that occurred on DDoc containers when SignatureProductionPlace data was not provided
• API improvements
  • Container builder accepts DataFile objects
  • Deleted DigestInfoPrefix class, moved prefixes to DigestAlgorithm enum
  • Removed Container dependency from SignatureParameters class.
  • Renamed Signature.getSigningTime to getClaimedSigningTime
  • Renamed SignatureBuilder.withDigestAlgorithm to withSignatureDigestAlgorithm
  • Removed Validating signature by validation type - Signature.validate(Validate validationType)
  • Removed Signature.setCertificate
  • Removed getting private key from signature token
  • Added getting trusted signing time to the Signature interface

Known issues

• 7 unit tests are temporarily failing
• Many of the DSS unit tests are broken because OCSP response is required in BDOC
• DigiDoc4j UriEncodingTest and MultiSignatureThreadSafetyTest are broken because test signing certificate is expired

Release 0.3.0 BETA2

Release of version 0.3.0 BETA2

Please note that this is an eID software beta version.
The software may not work properly and some faults may occur.

Changes

• The new API is more backward compatible with the old API. Creating and opening containers is not backward compatible #102993198.
• Added support for adding new container implementations in runtime #102993470.
• Changed test OCSP url #101030732.
• Updated unit tests to the new API #102993198.
• Reduced unnecessary logging a little bit

Known issues

• 7 unit tests are temporarily failing
• Many of the DSS unit tests are broken because OCSP response is required in BDOC
• DigiDoc4j UriEncodingTest and MultiSignatureThreadSafetyTest are broken because test signing certificate is expired

Release 0.3.0 BETA

Release of version 0.3.0 BETA

Please note that this is an eID software beta version.
The software may not work properly and some faults may occur.

Changes

• Refactored API interface #102001330
• Restored Logback logger configuration xml file #100946538
• Fixed the bug when data files go missing in action when container contains more than two data files #100660808

Known issues

• API is not backwards compatible. Using it requires some changes to code.
• 9 unit tests are temporarily failing
• Many of the DSS unit tests are broken because OCSP response is required in BDOC
• DigiDoc4j UriEncodingTest and MultiSignatureThreadSafetyTest are broken because test signing certificate is expired

Release 0.2.20 BETA2

Release of version 0.2.20 BETA2

Please note that this is an eID software beta version.
The software may not work properly and some faults may occur.

Changes

• Fixed the interoperability problem with jDigiDoc: OSCP certificate tag has RESPONDER_CERT id
• Included Nortal DDS team pull request to DSS and DigiDoc4j. Updated DSS libraries

Known issues

• Many of the DSS unit tests are broken because OCSP response is required in BDOC
• DigiDoc4j UriEncodingTest and MultiSignatureThreadSafetyTest are broken because test signing certificate is expired
• IntelliJ IDEA project files are out of sync
• Some files (DSSSignedInfo.java and DSSXMLSignature.java) were leftover after merging the pull request with DSS refactered code. Hopefully nobody will miss them
• Interoperability with JDigiDoc: BDOC-TM (time-mark) files created with DigiDoc4j library can be validated with JDigiDoc version 3.10 or newer.

Release 0.2.20 BETA

Release of version 0.2.20 BETA

Please note that this is an eID software beta version.
The software may not work properly and some faults may occur.

Changes

• DSS has been updated to version 4.4.RC1
• DSS did a major refactoring of modules and some changes to API
• Fixed unit tests and code that broke because of DSS rafactoring

Known issues

• Interoperability problems with jDigiDoc:
  • OSCP certificate tag is missing RESPONDER_CERT id in signatures.xml file when BDOC is created with DigiDoc4j, but jDigiDoc requires that ID to be present. Note that RESPONDER_CERT id is not required by the BDOC standard.
  • BDOC-TM (time-mark) files created with DigiDoc4j library can be validated with JDigiDoc version 3.10 or newer.

Release v0.2.18

Release of version 0.2.18

New:

• It is possible to set TSL loading connection timeout
• Signing certificate digest method is SHA256 instead SHA1
• Generates random nonce for OCSP request for TS signature

Fixes:

• Bad error message (No revocation data for the certificate) for revoked OCSP replaced with "The certificate is revoked"
• Now is restricted to add 2 data files with same name from stream.

Known issues:

• Interoperability with JDigiDoc: BDOC-TM (time-mark) files created with DigiDoc4j library can be validated with JDigiDoc version 3.10 or newer.

Release v0.2.17

Release of version 0.2.17

New:

• Verifies that the signature contains one signed properties reference
• Supports signing with ECC signature

Fixes:

• Signer's certificate validity now checked at OCSP response's produced at time
• Revoked certificate now returns correct error message

Known issues:

• Interoperability with JDigiDoc: BDOC-TM (time-mark) files created with DigiDoc4j library can be validated with JDigiDoc version 3.10 or newer.

More information can be obtained from Pivotal tracker: https://www.pivotaltracker.com/n/projects/1110130

Release v0.2.16

Release of version 0.2.16

New:

• Possible to create and validate BDOC time mark format documents
• Ivy is used as dependency manager

Fixes:

• Avoids SD-DSS to replace mime types known internally by extension
• Order of signer roles, policy and signing location is not accordingly to XSD
• OCSP nonce extension is non-critical
• Sets manifest.xml file before signatures.xml in container
• Signer's certificate must be valid at signing time (OCSP produced at / TS generation time)

Known issues:

• Interoperability with JDigiDoc: BDOC-TM (time-mark) files created with DigiDoc4j library can be validated with JDigiDoc version 3.10 or newer.

More information you can get from Pivotal tracker: https://www.pivotaltracker.com/n/projects/1110130