Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Please update Bouncy Castle #359

Closed
Neustradamus opened this issue Dec 31, 2020 · 6 comments
Closed

Please update Bouncy Castle #359

Neustradamus opened this issue Dec 31, 2020 · 6 comments
Assignees
@petrdvorak
Labels
enhancement

Comments

@Neustradamus
Copy link

Please update Bouncy Castle
@petrdvorak
Copy link
Member

Hello @Neustradamus, thank you for the report! Could you please elaborate if there is a strong reason to rush the update from 1.67 (that we currently use) to 1.68 (latest)? We will update the dependency in a reasonable time ahead of the next release, most likely in 03/2021...

@petrdvorak petrdvorak self-assigned this Dec 31, 2020
@Neustradamus
Copy link
Author

@petrdvorak: You can update easily now, please look the changelog of the 1.68.
Why do not create more builds?

@petrdvorak
Copy link
Member

@Neustradamus We are releasing our authentication stack every ~6 months. Probably still too frequent for some of our customers. I saw the changelog for BC 1.68 and this is why I asked what specifically do you think we should address from it.

@Neustradamus
Copy link
Author

@petrdvorak: Ok, I understand.
It is less important than 1.67.
But you can already update in upstream and before your next release verify if there is not a new...

@romanstrobl
Copy link
Member

I went through the diffs between versions 1.67 and 1.68 and the changes in Bouncy Castle code have no impact on cryptography used in in this project. We will migrate to a newer version of Bouncy Castle in Spring 2021 together with the rest of the PowerAuth stack. Given that there are multiple projects with the BC dependency we always do the migration at once to avoid compatibility issues. We do not want to migrate all PowerAuth projects to the 1.68 release right now because there is no reason for it and our backend projects would have conflicting dependencies (2 different versions of BC library). We will reassess the library upgrade in Spring, most likely there will be a newer release of Bouncy Caste library available at that time.

@romanstrobl romanstrobl mentioned this issue Jan 13, 2021
Merged
@Neustradamus
Copy link
Author

@petrdvorak, @romanstrobl: Can you update to 1.69?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@petrdvorak petrdvorak

Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@Neustradamus @petrdvorak @romanstrobl