bc-java
bc-java copied to clipboard
bcgit
Bouncy Castle Java Distribution (Mirror)
If you need to use sm4, then when generating Cipher, if you call CreateCipher with NamedJcaJceExtHelper, the parameter required is Cipher.getInstance("SM4","BC"), However, the JceCMSContentEncryptorBuilder passed through the sm4 oid, causing...
https://datatracker.ietf.org/doc/rfc9579/ adds the extension to PKCS12 so that these keystores can use different PBE key generation. This option also means that the PBE can now be a FIPS compliant one,...
This used to parse as valid OID with 1.77 with `ASN1ObjectIdentifier.fromByteArray(oid)`: ``` [TRACE] GPData - Parsing 06092A864886FC6B048000 as OID Tag 6: 1.2.840.114283.4.0 ``` This also matches the result from https://lapo.it/asn1js/#BgkqhkiG_GsEgAA...
StringBuffer is a synchronized Appendable, useful when more than one publisher is appending text to the same Appendable, but a waste of resources when the object is created and consumed...
In case of removing expiration date for earlier published public key expire date is being determined incorect. Example: for [this public key](https://keyserver.ubuntu.com/pks/lookup?search=60ec1b93cefd283d0ac228470ca7938287683fc0&fingerprint=on&op=index) method org.bouncycastle.openpgp.[PGPPublicKey.getValidSeconds()](https://github.com/bcgit/bc-java/blob/b8e4716f170a63986f8d3144445e3abff0e40475/pg/src/main/java/org/bouncycastle/openpgp/PGPPublicKey.java#L300) must return **0**, but returns 1141783116....
Added to guide users to create new issues and pull requests, according to Keyfactor Community templates.
The method `BCrypt.generate(...)` is quite error-prone because it expects that the caller adds a trailing null byte to the password, otherwise two passwords with one being the repetition of the...
Currently encrypted SSH keys are not support by `OpenSSHPrivateKeyUtil`. As implemented as there is no way to pass in a passphrase for a key this is not surprising that and...
It would be nice to have an enhancement or subclass of `BcCMSContentEncryptorBuilder` called `BcProvidedCMSContentEncryptorBuilder`. This class would not generate a fresh content encryption key (CEK) but instead would accept a...
