-
Notifications
You must be signed in to change notification settings - Fork 18
/
ChangeLog
182 lines (127 loc) · 5.28 KB
/
ChangeLog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
gnupg-pkcs11-scd
Copyright (c) 2006-2007 Zeljko Vrba <[email protected]>
Copyright (c) 2006-2024 Alon Bar-Lev <[email protected]>
????-??-?? - Version 0.11.1
* Fix potential crash, thanks to Itay Duvdevani.
* Ignore keys with unsupported algorithms in more cases, thanks to Itay
Duvdevani.
2024-10-27 - Version 0.11.0
* Return better error if pubkey algo unknown, thanks to Oleg Schelyklanov
* Fix several memory leaks and handling, thanks to Roy Keene.
* Remove support for <openssl-1.1
* Use pkg-config to detect g10 dependencies, thanks to Tomasz Kłoczko.
2022-01-04 - Version 0.10.0
* Ignore unsupported public keys, thanks to Manon Goo.
* Support PKAUTH command, thanks Mateusz Gozdek
* Parse all commands using strgetopt.
* Modify token and PIN prompts to pass the token id instead of text as
gnupg expects a token term.
* Support gnupg pin cache using the use-gnupg-pin-cache option requires
* Support gnupg-2.3.
* support specific key pin based on pkcs11-helper-1.28 feature.
* Fix segfault in PKAUTH command, thanks to Mateusz Gozdek.
2019-01-05 - Version 0.9.2
* Fix Windows build issues, thanks Luka Logar.
* Use pin-cache configuration, thanks Luka Logar.
* Support openssl-1.1, thanks Thorsten Alteholz, W. Michael Petullo.
2017-09-26 - Version 0.9.1
* Support unix domain socket credentials on FreeBSD.
* Introduce GNUPG_PKCS11_SOCKETDIR to instruct where sockets are created.
* Make proxy systemd service work again per change of systemd behavior.
2017-08-25 - Version 0.9.0
* Avoid dup of stdin/stdout so that the terminate assuan hack operational
again.
* Introduce gnupg-pkcs11-scd-proxy to allow isolation of the PKCS#11
provider.
* Lots of cleanups.
2017-07-15 - Version 0.8.0
* Support multiple tokens via serial numbers by hashing token id into
serial number.
Implementation changes the card serial number yet again, executing
gpg --card-status should resync.
2017-04-18 - Version 0.7.6
* Add --homedir parameter.
* Rework serial responses for gnupg-2.1.19.
2017-03-01 - Version 0.7.5
* Fix issue with decrypting padded data, thanks to smunaut.
* Catchup with gnupg-2.1 changes which caused inability to support
both gpg and gpgsm. Implementation had to change card serial
number, as a result current keys of gpg will look for the
previous serial card.
emulate-openpgpg option is obsoleted and removed.
ACTION REQUIRED
in order to assign new card serial number to existing keys.
backup your ~/.gnupg.
delete all PKCS#11 secret keys using:
gpg --delete-secret-keys $KEY then
Then refresh keys using:
gpg --card-edit
In <gnupg-2.1.19 the keys should be re-generated using:
admin
generate
Do not replace keys!
gpg will learn the private keys of the new card and attach to
the existing public keys.
* Support gnupg-2.1 features of using existing keys, keys
should not be explicitly specified in configuration file
any more.
2017-01-18 - Version 0.7.4
* Fix gpg change in serialno attribute.
* Sync with gnupg-2.1, thanks to Moritz Bechler.
2011-07-30 -- Version 0.7.3
* Use assuan_sock_init, bug#3382372.
2011-04-09 -- Version 0.7.2
* Some cleanups, thanks to Timo Schulz.
* Sync hashing algorithms for OpenPGP.
2011-03-16 -- Version 0.7.1
* Sync with gnupg-2.0.17.
2010-05-28 -- Version 0.7.0
* Add timegm() replacement, thanks to Lars Silvén.
* Sync with gnupg-2.0.14 commands.
* Need assuan-2.
2008-01-19 -- Version 0.06
* Fixed uninitializied gnutls datum, thank to Volodya
Vaynshteyn for his help.
* Sync with gnupg-2.0.8 assuan usage.
* Some minor fixups.
2007-10-05 -- Version 0.05
* Fixed a change in gnupg protocol for openpgp
emulation, thanks to Nick Kossifidis for testing.
* Added key timestamp on OpenPGP key generation,
thanks to Daniel Benoy for reporting and testing.
2007-06-13 -- Version 0.04
* Build system fixups.
* RPM packaging is available, thank to Eddy Nigg.
* Debian packaging is available, thank to Sandro Wefel.
* Hacks to support for OpenPGP smartcard emulation,
please refer the man page.
2007-01-05 -- Version 0.03
* Fixed some Intel C compiler warnings.
* pkcs11-helper is now external dependency.
* Decrypt support unwrap now, thanks for
Christoph Neerfeld help.
* Configuration file sign-mode was renamed to
private-mask.
2006-10-20 -- Version 0.02
* Added more characters to serialization exclude chars.
People may need to re-learn cards.
* Fixed configure GPG_HOME typeo, thanks to Bob Dunlop.
* Unlike gpg-agent, gnupg-pkcs11-scd supports more than
one token available at the same time. In order to make
gpg-agent happy, gnupg-pkcs11-scd always returns the
same card serial number to gpg-agent.
When unavailable token is requested, gnupg-pkcs11-scd
will use NEEDPIN callback in order to ask for the
requested token.
When and if gpg-agent will support more than one serial
number or NEEDTOKEN callback, this behavior will be
modified.
* Works as single threaded win32 server. Implementing
multi-threaded server forces copy of win32 socket handling
from gnupg, and it is GPLed.
When libassuan will handle sockets we will be able to
implement it.
* Added system wide configuration file, thanks to Bub Dunlop.
* Some more minor fixes.
2006-10-11 -- Version 0.01
* Initial release.