Release 5.3.0
Summary of the major changes since 5.2.0
- DSS version update to 6.0 (sd-dss.6.0.d4j.1), previously used DSS 5.11.1. Check changes in DSS here: https://github.com/esig/dss/releases
DSS update has caused the following notable changes to dependencies:- Migration from Javax to Jakarta namespace
- JAXB dependencies updated from 2.3.X to 3.0.X
- Apache Santuario xmlsec updated from 2.3.X to 3.0.X
- Bouncy Castle updated from jdk15on:1.70 to jdk18on:1.76
- SLF4J updated from 1.7.X to 2.0.X
- Prefer to use AIA OCSP by default on signature creation
- In DigiDoc4J command line utility, deprecated
-aiaocsp
parameter and added new-noaiaocsp
parameter
- In DigiDoc4J command line utility, deprecated
- TEST mode default timestamp URL updated to http://tsa.demo.sk.ee/tsa
- Changes in validation policies
- Updated dependencies
Known issues
- EDIT 10.06.2024: NB! Underlying DSS library version used in this release has memory leak since DSS 5.13.RC1. We are working on fixing it ASAP.
- EDIT 05.12.2024: We have noticed a decrease in performance of parsing/validating XAdES signatures that cover numerous data files since updating to DSS 6.0
- At the time of release, the newest supported Bouncy Castle version is 1.76
Bouncy Castle version 1.77 causes OCSP response parsing to fail - We have noticed a slight increase in TSL loading times due to pivot LOTL support
- We have noticed a decrease in performance with the introduction of properly accessing AIA certificate resources
- Opening a container that contains signatures, triggers TSL loading (TSL lazy loading does not work as expected)