Skip to content

Latest commit

 

History

History
229 lines (157 loc) · 7.58 KB

CHANGELOG.md

File metadata and controls

229 lines (157 loc) · 7.58 KB

Changelog

Unreleased

v1.5.0 (2024-07-31)

  • Add support for more curves (#207):
    • secp384r1 (NIST P-384)
    • secp521r1 (NIST P-521)
    • brainpoolp256r1
    • brainpoolp384r1
    • brainpoolp512r1

v1.4.1 (2024-03-22)

  • Bump RSA backend version (#209)

v1.4.0 (2024-03-22)

  • Use trussed-chunked and trussed-wrap-key-to-file instead of trussed-staging, see trussed-staging#19.
  • Update dependencies:
    • trussed (#198)
    • trussed-rsa-backend (#195)

v1.3.0 (2023-12-01)

  • Use the trussed clear API required for SE050 compatibility (#187)

v1.2.1 (2023-11-30)

  • Support factory reset through the admin app (#188)
  • Make RSA key size support a runtime configuration (#190)

v1.2.0 (2023-11-08)

Bugfixes

  • Reject all requests over NFC (#184)
  • Fix missing state save that could lead to a corrupted state (#170)
  • Fix crash when signing more than 1024 bytes (#174)

Changes

  • Add variables.mk file (#177)
  • Tests: add support for gnupg over pcscd (#180)
  • Update CI setup (#175 and #183)
  • Update delog dependency (#181)
  • Fix sha1collisiondetection dependency version (#179 and #182)

v1.1.1 (2023-07-04)

Bugfixes

  • Do not override existing pins on initialization (#166)

v1.1.0 (2023-05-30)

Bugfixes

  • Return status 6285 if SELECT is called in termination state (#154)
  • Save the new pin length after an RESET RETRY COUNTER call (#158)
  • Reset the signature counter after key generation and import (#155)

v1.0.0 (2023-04-27)

  • Add support for larger storage for certificates and private use data objects (#150)

Changes

  • Use upstream Trussed (#149)
  • Use stable serialization helpers instead of postcard directly (#148).
  • Add tests for RSA 3072 and make RSA feature-flags more granular (#143)

[v0.4.0][] (2023-02-24)

Features

  • Add support for RSA 3072 bits (#116)
  • Support use of external storage (#[117][])
  • Encrypt data on the external storage (#134, #135, #136, #137, #138, #139, #127)

Changes

  • Use trussed-rsa-backend (#116)
  • Use trussed-auth for pin authentication (#125)

Developement

  • Rename "virtual" to "vpicc" (#132)
  • Rename make check to make lint (#120)
  • Add usbip runner and test against the gnuk test suite (#105)

v0.3.0 (2023-02-24)

Features

  • Ensure gpg can factory reset the card even when corrupted (#103)
  • Add mechanism to run tests against a real card (#97 and #108)

Bugfixes

Developement

  • Use fully qualified path to CI base docker image (#109)
  • Documentation improvements (#95, #98, #107)
  • Fix version of patched dependencies (#101)

v0.2.0 (2022-11-18)

Features

  • Support using authentication keys for decryption and vice-versa with MANAGE SECURITY ENVIRONMENT (#60)
  • Support PIN resets using a resetting code (#63)
  • Support AES encryption/decryption (#64)
  • Support RSA 2048 and 4096 bit key usage and generation (#94)

Bugfixes

  • Fix the length of the Digital signature counter DO 0x93 (#76)
  • PSO:CDS: Increment the signature counter (#78)
  • Fix endianness of curve25519 key import(#89)

v0.1.0 (2022-10-12)

This initial release contains support for the basic OpenPGP Card functionality (key generation, key import, signing, decrypting, card administration) for Curve25519 and NIST P-256.