You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/releasenotes.html
+1-1Lines changed: 1 addition & 1 deletion
Original file line number
Diff line number
Diff line change
@@ -38,10 +38,10 @@ <h3>2.2.3 Additional Features and Functionality</h3>
38
38
<li>Support has been added for the direct construction of S/MIME AuthEnvelopedData objects, via the SMIMEAuthEnvelopedData class.</li>
39
39
<li>An override "org.bouncycastle.asn1.allow_wrong_oid_enc" property has been added to disable new OID encoding checks (use with caution).</li>
40
40
<li>Support has been added for the PBEParemeterSpec.getParameterSpec() method where supported by the JVM.</li>
41
-
<li>The low-level TLS now provides some support for configuring GCM nonce-generation for TLS 1.2 (FIPS 140-2/3 requirement).</li>
42
41
<li>ML-DSA/SLH-DSA now return null for Signature.getParameters() if no context is provided. This allows the algorithms to be used with the existing Java key tool.</li>
43
42
<li>HQC has been updated to reflect the reference implementation released on 2024-10-30.</li>
44
43
<li>Support has been added to the low-level APIs for the OASIS Shamir Secret Splitting algorithms.</li>
44
+
<li>BCJSSE: System property "org.bouncycastle.jsse.fips.allowGCMCiphersIn12" no longer used. FIPS TLS 1.2 GCM suites enabled according to JcaTlsCrypto#getFipsGCMNonceGeneratorFactory (see JavaDoc for details).</li>
0 commit comments