[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
[cf-dev] new milestone (changes)
|
BTW here is a list of changes since the last milestone (1.0.0-M3):
Bill Bennett (1):
Fix handling of unsupported compression methods - avoid NullPointerException.
Kai Hudalla (72):
Explicitly filter out and ignore NULL cipher proposed by a client during cipher negotiation. Remove obsolete console message regarding WARNINGS during test execution
Improve JavaDoc
Made console output more verbose
Small improvements
Make getSessionByAddress() public again.
Add DTLSConnector test case.
Small improvements to Handshaker hierarchy.
Implement destroy() method to properly close all sessions during shutdown. Make close(InetSocketAddress) public again in order to not break existing client code. Reduce log levels to reduce verbosity.
Add missing copyright header.
Make ScandiumFormatter correctly format log messages containing java.text.MessageFormat placeholder etc.
Skip unknown record type when parsing multiple records from a byte array instead of aborting parsing altogether. Update unit test accordingly.
Add convenience constructor for setting session and peer address to get rid of obsolete setter invocations.
Add duplicate record detection as described by section 4.1.2.6 of the DTLS 1.2 spec. Add corresponding unit tests.
Some small improvements
Include duplicate record detection into standard message processing logic in Handshakers.
Adjust log levels to reduce verbosity.
Fix NPE in toString() method when fragment has not been decrypted yet.
Reduce visibility of accessors for master secret. Fix setter for master secret to accept initial value if field is null only.
Fix NPEs when serializing to byte array due to uninitialized collections for compression methods and cipher suites. Refactor toString() method to use StringBuffer instead of String concatenation.
Added some log statements to help with debugging, reduced log levels to decrease verbosity.
Add equals() & hashCode() in order to make comparisons easier.
Refactor record processing logic to improve readability and testability. Added comments for documentation purposes, added log statements helping with debugging, improved shut-down of connector.
Fix bug 462463.
Add equals & hashCode for easier comparison.
Turn into an immutable and reduce visibility to improve encapsulation.
Use primitive type "long" for record sequence numbers consistently in order to reduce type conversions when dealing with Record instances.
Replace DTLSConnectorConfig with an immutable configuration class providing for better encapsulation and removing mutual package dependencies.
Fix missing DtlsConnectorConfig class in Scandium jar file.
Adapt NULL cipher suite's name to official IANA name.
Fix limiting length of record sequence numbers to 48 bit.
Fix bug 464383. Defer session creation to AFTER a client has proven his ability to receive and process IP packets.
Limit size of outbound message buffer to prevent OutOfMemory exceptions.
Reduce visibility of DTLSSession fields to improve encapsulation.
Small improvements.
Fix validation in DtlsConnectorConfig.Builder to allow for RawPublicKey mode without requiring a certificate chain.
Make accessors for peer identity public again because Leshan (currently) uses them to authorize clients.
Fix validity check in DtlsConnectorConfig to allow for configuration of PSK based cipher suite without setting keys.
Implicitly set cipher suites based on PSK store or keys set by user.
Allow for multiple cookie exchanges with a client at the beginning of a handshake.
Only guess cipher suites frmo config properties if user has not explicitly set them.
Add JavaDocs, fix formatting.
[464812] Provide access to peer's identity in messages forwarded to application layer.
Use StringBuffer.append() instead of string concatenation in toString() method.
Fix wrong interpretation of certificate_type extension values sent by server.
Small improvements.
Only negotiate certificate_types when DTLSConnector supports a certificate based key exchange algorithm.
Remove dependency to Java 8 java.util.Base64 class.
Fix wrong encoding of Named Information URI.
Use standard Java Cryptography provided HmacSHA256 algorithm for cookie generation.
Store whole public key instead of only the key's subject info.
Make exception more verbose.
Replace custom HMAC implementation with standard algorithm obtained via Java Security API.
Small improvements to CipherSuite.
Remove RC4 cipher because it is explicitly ruled out from being used in DTLS.
Always initialize the current read/write state with the NULL connection state.
Avoid string concatenation when creating toString() result.
Add accessor for the message's content type.
Make access to particular hello_extensions easier.
Reduce log level threshold for ConsoleLogger to FINEST.
Add convenience getters for security parameters so that client code does not need to know about the class' internal structure.
Add support for CBC Block Ciphers.
Add log statements and toString() method.
Use convenience getters for retrieving server & client certificate types from Server Hello message.
Allow for configuration of an anonymous client-only DTLSConnector.
Improve InMemorySessionStore to
Make sure that the session to resume contains a session identifier.
Add missing copyright/license header.
Fix default constructor to create 32 random bytes instead of an empty byte array.
Small improvements.
Fix calculation of message length when no hello extensions are present.
Use Rob Harders public domain Base64 encoding code instead of javax.xml.bind.DatatypeConverter which is not available on all platforms (e.g. Android).
Fix indentation.
Matthias Kovatsch (1):
Release 1.0.0-M3
Regards,
Kai
