chore(deps): bump com.google.crypto.tink:tink-android from 1.18.0 to 1.20.0 in /android

- CI Pipelinerequested to merge
dependabot-gradle-android-com.google.crypto.tink-tink-android-1.20.0 into main

Bumps com.google.crypto.tink:tink-android from 1.18.0 to 1.20.0.

Release notes

Sourced from com.google.crypto.tink:tink-android's releases.

Tink Java v1.19.0

Tink is a multi-language, cross-platform library that provides simple and misuse-proof APIs for common cryptographic tasks.

This is Tink Java 1.19

The complete list of changes since 1.18.0 can be found here.

Build changes

  • For Bazel builds, we now use Bazel 7.6.1. in our tests.
  • For Bazel builds, Tink now supports bzlmod.
  • Tink no longer supports Java 8. The minimum version starting from 1.19.0 is Java 11.

Dependencies

  • Protobuf 4.28.2 was upgraded to Protobuf 4.32.1. (Note: we plan to shade protobuf in the next minor version of Tink which should resolve compatibility issues)

Obscure behaviour changes

  • Tink will reject custom key types where the Type-Url has non-ASCII characters.

  • Tink may serialize keysets slightly differently in certain cases. For example, in the serialization of a ECDSA keyset, the points might be padded differently than before. Users should not depend on the exact format of Tink's serialization.

  • Use Conscrypt's AES-CMAC implementation when available and when the input is larger than 64 byte. This may improves the performance of AES-CMAC, AES-SIV and AES-EAX for large inputs.

  • Removed usage of thread-local Ciphers for ChaCha20Poly1305.

Added APIs

  • Added public JwtEcdsaParameters.Algorithm.getEcParameterSpec method.

  • The AES-SIV implementation in subtle now accepts multiple associated datas.

Future work

To see what we're working towards, check our project roadmap.

Getting started

To get started using Tink, see the setup guide.

Maven:

<dependency>
    <groupId>com.google.crypto.tink</groupId>
    <artifactId>tink</artifactId>
</tr></table>

... (truncated)

Commits
  • fe3e251 Tag version 1.20.0
  • efe61ad Move JwtNames.java to /jwt/internal/JwtNames.java
  • 2450984 Move JsonUtil to com.google.crypto.tink.jwt.internal.
  • 493a645 Add createWithProvider to internal SLH-DSA primitives.
  • 71f2a9b Implement the LowLevelCryptoCaller annotation.
  • d231253 Make SlhDsa available in SignatureConfigurationV1.
  • 47d37db Introduce SlhDsaSign/VerifyConscrypt to Tink Java.
  • 067cd7a Introduce SlhDsaProtoSerialization in Tink Java.
  • 074bbfb Introduce SlhDsaPrivateKeys to Tink Java.
  • ab3558c Introduce SlhDsaPublicKey to Tink Java.
  • Additional commits viewable in compare view

Merge request reports