The XML Security Library 1.3. release includes the following changes:
- (xmlsec-openssl) Fixed padding for GOST 2001 and 2012 signatures.
- (xmlsec-nss) Added support for reading PEM certificates.
- (xmlsec-nss) Added a check to ensure that the key certificat matches the key.
- (xmlsec-nss) Added support for xmlsec command line tool '--verify-keys' option.
- (xmlsec-gnutls) Added support for GOST R 34.11-94, GOST R 34.11-2012 256 bit, and GOST R 34.11-2012 512 bit digest algorithms.
- (xmlsec-gnutls) Added support for GOST R 34.10-2001, GOST R 34.11-2012 256 bit, and GOST R 34.11-2012 512 bit signature algorithms.
- (xmlsec-gnutls) Added support for xmlsec command line tool '--verify-keys' option.
- (xmlsec-gnutls) Added check to ensure that the key certificat matches the key.
- (xmlsec-mscng) Added support for xmlsec command line tool '--verify-keys' option.
- (xmlsec-mscng) Replaced windows.h includes with wincrypt.h includes where possible.
- (xmlsec-mscrypto) Replaced windows.h includes with wincrypt.h includes where possible.
- (xmlsec command line tool) Added
--base64-line-sizeoption to control the base64 encoding line size. - (MSVC build) Added 'ftp' and 'http' options to control FTP and HTTP support. FTP support is disabled by default.
- (MinGW build) The xmlsec-mscrypto is moved down in the default crypto library selection list as it is now in maintanance mode (use "--with-default-crypto" option to force the selection).
- (MinGW build) Fixed the static libraries build with "--enable-static-linking" option.
- Several other small fixes (see more details).
Please test the release candidate (signature) and let me know if you see any issues!