Eclipse Californium (Cf) CoAP Framework 3.5.0

Minor release.

Includes DTLS workaround for CVE-2022-21449 JVM 15-18, broken ECDSA. The (still experimental) TLS variant is not fixed with this! Please update your jvm as soon as possible and available!

Introduce new LeastRecentlyUpdatedCache with strict read/write function and exported read-write-lock. And an extended ReadWriteLockConnectionStore, which optionally limits stale DTLS session for reused identities/principals.

The 3.5.0 processes empty messages (PING/ACK/RST) now strictly according RFC 7252, 4.1. This could be also disabled with "STRICT_EMPTY_MESSAGE_FORMAT=false" to support relaxed, not compliant, processing.

OSCORE is now added to the plugtest. Work on interoperability with libcoap is ongoing. The API of cf-oscore is currently not considered to be stable.

A JMeter plugin is added to Californium.Tools to support tests on the application layer. 

  • e9c4435ca 2022-04-24 Reset Request's ready on waitForResponse.
  • 2054c5bc7 2022-04-24 Fix retransmission of the request in plugtest to check deduplication.
  • 9bfb4ef64 2022-04-24 Support BC for broken ECDSA test.
  • 2001000e9 2022-04-24 Amend documentation.
  • 3cbdc6fb0 2022-04-23 Deprecate ObserveRelation.notifyObservers.
  • 711d0f81e 2022-04-22 Fix java 15-18 ECDSA vulnerability.
  • 60f7b2e07 2022-04-22 Limit number of non-notification mids in exchange store.
  • 88bca6cc5 2022-04-21 Add cli parameter for plugtest server notification interval.
  • 6784b5d94 2022-04-21 Adapt cloud-config to reduced directory path.
  • e9af5b863 2022-04-21 Reduce directory levels in unix-setup module.
  • 850dfcc85 2022-04-21 Reduce directory levels in demo-certs module.
  • fd41397c5 2022-04-21 Reduce directory levels in legal module.
  • cfc600042 2022-04-21 Adapt licenses in assembly files.
  • 872382ff8 2022-04-19 Add STRICT_EMPTY_MESSAGE_FORMAT to CoapConfig.
  • 45ae4c526 2022-04-21 Add patch request for CoapClient.
  • c2ff20f8c 2022-04-20 Fix javadoc issues.
  • c2e6f5f3d 2022-04-20 Update dependencies.
  • c10786dea 2022-04-20 Change log level for reused messages to error.
  • 8bbcf3a72 2022-04-14 Add read-write-lock for connection store
  • 9a84e411c 2022-04-19 Fail on sending messages twice.
  • 5d6368dd3 2022-04-19 Add unit test with GET NON observer and CON notifies.
  • e9cec7baa 2022-04-15 Prevent skip staging in the last module.
  • 01ed83b9e 2022-04-14 Add LeastRecentlyUpdatedCache.
  • c126f1cbc 2022-04-13 Add dtls-filter.
  • a0e1418df 2022-04-14 Limit pending incoming dtls records.
  • c0369c353 2022-04-14 Add TLS_EMPTY_RENEGOTIATION_INFO_SCSV.
  • 71110a12a 2022-04-13 Add missing javadoc to DtlsConnectorConfig.
  • 2960e8866 2022-04-13 Fix javadoc for plugtest-checker.
  • 87ea1cea0 2022-04-13 Fix javadoc for DtlsHealthExtended.
  • 9838e7de6 2022-04-13 Update README.
  • e9b3e008c 2022-04-12 Add OSCORE to plugtest-checker.
  • e2c9684c4 2022-04-12 OSCORE: Reduce logging levels and improve logging statements
  • d3be27d7b 2022-04-11 Remove obsolete checks in serialization.
  • 11aa2d293 2022-04-11 Use specific plugtest configuration instead of standard one.
  • 03a34a5d1 2022-03-18 OSCORE: Add OSCORE support to plugtest server and client
  • e42acbdc3 2022-04-11 Add peer's identity to Exchange string.
  • ecc95413b 2022-04-11 Add registerEndpoint to cli-client-initializer to create a coap-endpoint also postponed.
  • 4bad0801b 2022-04-08 Switch to general configuration functions.
  • fed76f13f 2022-04-07 Add udp configuration to unix-setup readme.
  • c4c14de42 2022-04-06 Add observe-notify test with fast changing notifies.
  • 96f644a91 2022-04-06 Add documentation of default value for buffer sizes.
  • 44d511d19 2022-04-04 Add javadoc for usage of DefinitionsProvider.
  • 75e72b207 2022-04-01 Use connection-store factory for unit tests.
  • 48cc9832e 2022-03-31 Update SECURITY.md
  • ba9ce5c78 2022-03-30 Add extended master secret to cli parameter.

 

Release Date
Release Type
Minor release