Symmetric Encryption and Major Cleanups
-
Note: All debug-only kotlinx.serialization for cryptographic datatypes like certificates, public keys, etc. was removed!
- We support robust ASN.1 encoding and mapping from/to JOSE and COSE datatypes and our ASN.1 structures support pretty printing.
- -> There is no need for this misleading serialization support for debugging anymore.
@Serializablesuggests deserialization from JSON, CBOR, etc. works, which was never universally true.- Getting native ASN.1 serialization for kotlinx-serialization is now a no-brainer given we support every primitive required.
- Serializers like
X509CertificateBase64UrlSerializerare here to stay because those are universally useful! ObjectIdSerializerwas renamed toObjectIdentifierStringSerializer
-
HMAC Support
- This finally cleans up the
RSAorHMACmess, which is a breaking change - Introduce umbrella
DataIntegrityAlgorithms, which is the parent ofSignatureAlgorithmandMessageAuthenticationCode JwsAlgorithmandCoseAlgorithmare now abstract, having subclasses.JwsAlgorithms andCoseAlgorithms are now available under.Signatureand.MACrespectively. There are no toplevel constants of predefined algorithms anymore!
- This finally cleans up the
-
Symmetric Encryption
- Supported Algorithms
- AES
- GCM
- CBC-HMAC
- CBC
- ECB
- KW
- ChaCha-Poly1305
- AES
- Add algorithm mappings to indispensable-josef This is a binary-incompatible change
ivLengthandencryptionKeyLengthnow returnBitLengthinstead ofInttextis now properly calledidentifier
- Supported Algorithms
-
Move
HazardousMaterialsannotation fromsupremetoindispensableThis is a breaking change -
Move
SecretExposureannotation fromsupremetoindispensableThis is a breaking change -
Expose
SecureRandomas API dependency inindispensable -
Rename
CoseAlgorithm.value->CoseAlgorithm.coseValue -
Fix COSE key parsing for unordered properties
-
Remove code elements deprecated in 3.15.0, related to OID4VCI and HAIP