The XML Security Library 1.3.2 release includes the following changes:
- (xmlsec-openssl) Fixed padding for GOST 2001 and 2012 signatures.
- (xmlsec-nss) Added support for reading PEM certificates.
- (xmlsec-nss) Added a check to ensure that the key certificate matches the key.
- (xmlsec-nss) Added support for xmlsec command line tool
--verify-keysoption. - (xmlsec-gnutls) Added support for GOST R 34.11-94, GOST R 34.11-2012 256 bit, and GOST R 34.11-2012 512 bit digest algorithms.
- (xmlsec-gnutls) Added support for GOST R 34.10-2001, GOST R 34.11-2012 256 bit, and GOST R 34.11-2012 512 bit signature algorithms.
- (xmlsec-gnutls) Added support for xmlsec command line tool
--verify-keysoption. - (xmlsec-gnutls) Added check to ensure that the key certificat matches the key.
- (xmlsec-mscng) Added support for xmlsec command line tool
--verify-keysoption. - (xmlsec-mscng) Replaced windows.h includes with
wincrypt.hincludes where possible. - (xmlsec-mscrypto) Replaced windows.h includes with
wincrypt.hincludes where possible. - (xmlsec command line tool) Added
--base64-line-sizeoption to control the base64 encoding line size. - (MSVC build) Added 'ftp' and 'http' options to control FTP and HTTP support. FTP support is disabled by default.
- (MinGW build) The xmlsec-mscrypto is moved down in the default crypto library selection list as it is now in maintanance mode (use
--with-default-cryptooption to force the selection). - (MinGW build) Fixed the static libraries build with
--enable-static-linkingoption. - Several other small fixes (see more details).
Thanks to all who reported bugs or sent PRs!
Aleksey