Releases: alonbl/gnupg-pkcs11-scd
gnupg-pkcs11-scd-0.9.3
2021-12-31 - Version 0.9.3
- Ignore unsupported public keys, thanks to Manon Goo.
- Support PKAUTH command, thanks Mateusz Gozdek
- Parse all commands using strgetopt.
- Modify token and PIN prompts to pass the token id instead of text as
gnupg expects a token term. - Support gnupg pin cache using the use-gnupg-pin-cache option requires
- Support gnupg-2.3.
- support specific key pin based on pkcs11-helper-1.28 feature.
gnupg-pkcs11-scd-0.11.0
2024-10-27 - Version 0.11.0
- Return better error if pubkey algo unknown, thanks to Oleg Schelyklanov
- Fix several memory leaks and handling, thanks to Roy Keene.
- Remove support for <openssl-1.1
- Use pkg-config to detect g10 dependencies, thanks to Tomasz Kłoczko.
gnupg-pkcs11-scd-0.10.0
2022-01-04 - Version 0.10.0
- Ignore unsupported public keys, thanks to Manon Goo.
- Support PKAUTH command, thanks Mateusz Gozdek
- Parse all commands using strgetopt.
- Modify token and PIN prompts to pass the token id instead of text as
gnupg expects a token term. - Support gnupg pin cache using the use-gnupg-pin-cache option requires
- Support gnupg-2.3.
- support specific key pin based on pkcs11-helper-1.28 feature.
- Fix segfault in PKAUTH command, thanks to Mateusz Gozdek.
gnupg-pkcs11-scd-0.9.2
2019-01-05 - Version 0.9.2
- Fixu Windows build issues, thanks Luka Logar.
- Use pin-cache configuration, thanks Luka Logar.
- Support openssl-1.1, thanks Thorsten Alteholz, W. Michael Petullo.
gnupg-pkcs11-scd-0.9.1
2017-09-26 - Version 0.9.1
- Support unix domain socket credentials on FreeBSD.
- Introduce GNUPG_PKCS11_SOCKETDIR to instruct where sockets are created.
- Make proxy systemd service work again per change of systemd behavior.
gnupg-pkcs11-scd-0.9.0
2017-08-25 - Version 0.9.0
- Avoid dup of stdin/stdout so that the terminate assuan hack operational
again. - Introduce gnupg-pkcs11-scd-proxy to allow isolation of the PKCS#11
provider. - Lots of cleanups.
gnupg-pkcs11-scd-0.8.0
2017-07-15 - Version 0.8.0
- Support multiple tokens via serial numbers by hashing token id into
serial number.
Implementation changes the card serial number yet again, executing
gpg --card-status should resync.
gnupg-pkcs11-scd-0.7.6
2017-04-18 - Version 0.7.6
- Add --homedir parameter.
- Rework serial responses for gnupg-2.1.19.
gnupg-pkcs11-scd-0.7.5
2017-03-01 - Version 0.7.5
-
Fix issue with decrypting padded data, thanks to smunaut.
-
Catchup with gnupg-2.1 changes which caused inability to support
both gpg and gpgsm. Implementation had to change card serial
number, as a result current keys of gpg will look for the
previous serial card.
emulate-openpgpg option is obsoleted and removed.ACTION REQUIRED
in order to assign new card serial number to existing keys.
backup your ~/.gnupg.
delete all PKCS#11 secret keys using:
gpg --delete-secret-keys $KEY then
Then refresh keys using:
gpg --card-edit
In <gnupg-2.1.19 the keys should be re-generated using:
admin
generate
Do not replace keys!
gpg will learn the private keys of the new card and attach to
the existing public keys. -
Support gnupg-2.1 features of using existing keys, keys
should not be explicitly specified in configuration file
any more.
gnupg-pkcs11-scd-0.7.4
2017-01-18 - Version 0.7.4
- Fix gpg change in serialno attribute.
- Sync with gnupg-2.1, thanks to Moritz Bechler.