SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libykpiv2-2.6.1-60.1.i586.rpm :

* Thu Sep 12 2024 Wolfgang Frisch - update to 2.6.1:
* cmd: Fix performing bio verification
* ykcs11: Fix handling ED25519 and X25519 keys
* Mon Aug 26 2024 Wolfgang Frisch - update to 2.6.0:
* cmd: Add support for biometric verification and match policy
* ykcs11: Add support for PKCS11 3.0
* ykpiv: cmd: ykcs11: Improve error traceability
* ykpiv: cmd: ykcs11: Fix minor bugs
* build: Make building with zlib optional
* Tue May 07 2024 Wolfgang Frisch - update to 2.5.2:
* cmd: Fix signing selfsigned certificate for ED25519 key.- update cmake-flags-upstream-issue-474.patch
* Wed Feb 14 2024 Wolfgang Frisch - update to 2.5.1:
* ykpiv: cmd: ykcs11: Fix buffer size for key import.- add cmake-flags-upstream-issue-474.patch: proper fix for the cmake flags issue- remove temporary-cmake-flags-fix.patch
* Wed Feb 07 2024 Wolfgang Frisch - update to 2.5.0:
* ykpiv: cmd: ykcs11: Add support for RSA3072 and RSA4096 key types. Available in firmware 5.7.0 and newer
* ykpiv: cmd: Add support for ED25519 and X25519 key types. Available in firmware 5.7.0 and newer
* ykpiv: cmd: Add support for deleting keys. Available in firmware 5.7.0 and newer
* ykpiv: cmd: Add support for moving keys between slots. Available in firmware 5.7.0 and newer- add temporary-cmake-flags-fix.patch The included cmake modules are buggy. This patch should be removed once the root cause is fixed in upstream.
* Sun Dec 17 2023 Dirk Müller - update to 2.4.2:
* ykpiv: Fix potential type casting bug.
* ykpiv: ykcs11: Fix building on certain architectures.
* ykpiv: cmd: Add support for compressing certificate upon import
* ykcs11: Increase maximum number of slots to handle overflow
* ykcs11: Add support for CKA_COPYABLE and CKA_DESTROYABLE attributes
* Fri Mar 03 2023 Dirk Müller - update to 2.3.1:
* ykpiv: Add support for T=0 smartcards
* ykpiv: ykcs11: Minor code optimization
* ykpiv: ykcs11: Improve logging
* ykpiv: ykcs11: Improve error handling
* ykpiv: ykcs11: Fix minor bugs
* ykcs11: Add support for several PKCS11 Attributes
* ykcs11: Add support for CKM_ECDSA_SHA512 mechanism
* ykcs11: Fix incorrect value for public key attributes CKA_PRIVATE, CKA_SENSITIVE, CKA_ALWAYS_SENSITIVE, CKA_EXTRACTABLE and CKA_NEVER_EXTRACTABLE
* doc: Minor documentation improvement
* Sat Dec 03 2022 Dirk Müller - update to 2.3.0:
* ykpiv: Add support for AES management keys
* ykpiv: Better handling of connection reset
* ykpiv: Add support for T=0 protocol
* ykcs11: Support YubiKeys in NFC readers
* ykcs11: Support touch and PIN policies for imported private keys
* ykcs11: Support touch and PIN policy when generating keys
* ykcs11: Set length to -1 on function fail
* ykcs11: Ignore CKA_NAME_HASH_ALGORITHM and CKA_HASH_OF_SUBJECT_PUBLIC_KEY for certificates
* cmd: Support attestation in selfsign certificates
* build: Compile cleanly with openssl 1.1 and 3- add keyring
* Mon Jan 31 2022 Dirk Müller - update to 2.2.1:
* ykpiv: Minor bug fixes
* ykcs11: Improved handling of object attributes
* ykcs11: Update flags for EC related mechanisms
* ykcs11: Minor bug fixes
* test: Improved testing
* doc: Improved documentation
* Sun Feb 28 2021 Dirk Müller - update to 2.2.0:
* ykpiv: Increased SO version
* ykpiv: Fixed minor memory leaks
* ykpiv: Improved error handling
* ykpiv: Improved handling of PCSC card validation
* ykcs11: Updated Cryptoki version
* ykcs11: Support for CKM_ECDH1_DERIVE mechanism info
* ykcs11: Support for destroying ECDH derived keys
* ykcs11: Improved handling of PIN after device re-connection
* ykcs11: Improved debug logging
* cmd: Improved parsing of certificate Distinguished Name to allow an escape character
* cmd: Warning to discourage generating RSA1024 keys
* build: Use of platform standard installation path when building yubico-piv-tool
* tests: Improved testing
* Replaced building with autotool with building with cmake
* Security update for YSA-2020-02
* ykpiv: Fixed potential memory leaks
* ykpiv: Use PIN-protected MGMT key if the device is configured that way
* ykpiv: Added attestation to CSR if requested
* ykpiv: Fixed compatibility with LibreSSL
* ykcs11: Improved handling of error codes
* ykcs11: Improved handling of examples in the PKCS11 specifications
* ykcs11: Added the possibility to have debug output as a runtime setting
* ykcs11: Added support to unblock PIN with PUK
* ykcs11: Make C_SetPIN backwards compatible while also allowing unblock PIN
* tests: Improved tests- run tests- add pthread-link.patch
  
ICM