Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make S/MIME algorithms configurable (signature algorithm for signing, key encapsulation and cipher algorithms for encryption) #498

Closed
asariev opened this issue Mar 19, 2024 · 4 comments
Closed

Make S/MIME algorithms configurable (signature algorithm for signing, key encapsulation and cipher algorithms for encryption) #498

asariev opened this issue Mar 19, 2024 · 4 comments
Assignees
@bbottema
Labels
enhancement Priority-Low
Milestone
8.7.1

Comments

@asariev
Copy link

asariev commented Mar 19, 2024

No description provided.

@bbottema bbottema added this to the 8.7.0 milestone Mar 19, 2024
@bbottema bbottema self-assigned this Mar 19, 2024
bbottema added a commit that referenced this issue Mar 20, 2024
@bbottema
#498: Start by adding support for the relevant properties for configu…
19903d7 
…rable S/MIME algorithms
bbottema added a commit that referenced this issue Mar 20, 2024
@bbottema
#498: Then switch to the more explicit S/MIME API, manually passing i…
c958f53 
…n the defaults from smime-util itself, so we can start replacing it with our own values
bbottema added a commit that referenced this issue Mar 20, 2024
@bbottema
#498: Finally implement builder API to configure S/MIME signing and/o…
0c681f2 
…r encryption algorithms, and actually use it. Added tests to test some variations, including both RSA (already present) and DSA (added new key for this in pkcs store).
@bbottema bbottema changed the title Configurable to set CMSAlgorithm.AES256_CBC instead of CMSAlgorithm.DES_EDE3_CBC in SmimeUtil.class Make S/MIME algorithms configurable (signature algorithm for signing, key encapsulation and cipher algorithms for encryption) Mar 20, 2024
@bbottema bbottema mentioned this issue Mar 20, 2024
Closed
@bbottema
Copy link
Owner

I think it was about time this was configurable. I'm almost done with it.

bbottema added a commit that referenced this issue Mar 20, 2024
@bbottema
#498: Fix CLI support
0369974
@bbottema
Copy link
Owner

Feature released in 8.7.1.

Please refer to the documentation on signing and encrypting with S/MIME. You can now set any signature algorithm when signing and any key encapsulation algorithm and cipher algorithm when encrypting. Enjoy!

@bbottema
Copy link
Owner

To give a specific example of your request:

Email emailToBeEncrypted = currentEmailBuilder
    .(..)
    .encryptWithSmime(SmimeEncryptConfig.builder()
		.x509Certificate(yourCertificate)
		.cipherAlgorithm("AES256_CBC")
		.build())
    .buildEmail();

@asariev
Copy link
Author

asariev commented Mar 21, 2024 via email

@bbottema bbottema mentioned this issue Mar 22, 2024
Closed
bbottema added a commit that referenced this issue Mar 22, 2024
@bbottema
#498: Start by adding support for the relevant properties for configu…
e2ec9a7 
…rable S/MIME algorithms
bbottema added a commit that referenced this issue Mar 22, 2024
@bbottema
#498: Then switch to the more explicit S/MIME API, manually passing i…
bc4f294 
…n the defaults from smime-util itself, so we can start replacing it with our own values
bbottema added a commit that referenced this issue Mar 22, 2024
@bbottema
#498: Finally implement builder API to configure S/MIME signing and/o…
4228bb6 
…r encryption algorithms, and actually use it. Added tests to test some variations, including both RSA (already present) and DSA (added new key for this in pkcs store).
bbottema added a commit that referenced this issue Mar 22, 2024
@bbottema
#498: Fix CLI support
81f29d4
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@bbottema bbottema

Labels
enhancement Priority-Low
Projects
None yet
Milestone
8.7.1
Development

No branches or pull requests
2 participants
@bbottema @asariev