Skip to content

v0.10.0
Compare
Choose a tag to compare
@arekinath arekinath released this 06 Sep 01:06
· 111 commits to main since this release
v0.10.0
ef6477b

New features:

  • Added the pivy-ca tool, which manages a basic X.509 CA on a PIV device
  • pivy-agent now supports the OpenSSH sessbind extension for detecting forwarded agent connections
  • pivy-tool accepts and produces PEM as well as DER for certificate-related commands
  • Added pivy-tool list -j to produce JSON output
  • pivy-box can import configs from another template in edit -i mode
  • illumos binaries are now built against the system libpcsc and have CTF information

Bugs fixed:

  • Build issue on some new versions of libbsd (e.g. on ArchLinux)
  • pivy-tool fix for MS SID extension in user-auth certs being generated incorrectly
  • pivy-agent and pivy-tool no longer reset the card after every transaction if they can clear PIN state instead
  • PIV spec: handle 6A88 status words properly on PIN commands
  • pivy-tool: fix generate on non-contiguous retired key slots
Assets 8
Loading