Skip to content

Releases: rnpgp/rnp

Version 0.13.1

02 Jun 10:07
@ni4 ni4
Compare
Choose a tag to compare

Security

  • rnpkeys: Fix issue #1030 where rnpkeys would generate unprotected secret keys.

OpenPGP signing key

Fingerprint: BEDBA05C1E6EE2DFB4BA72E1EC5D520AD90A7262

Version 0.13.0

02 Jun 10:06
@ni4 ni4
Compare
Choose a tag to compare

Extended FFI and CLI interfaces, giving more flexibility and control to the user.

General

  • Fixed a double-free on invalid armor headers.
  • Fixed broken versioning when used as a git submodule.
  • Fixed an infinite loop on parsing truncated armored keys.
  • Fixed armored stream parsing to be more flexible and allow blank lines before trailer.
  • Fixed the armor header for detached signatures (previously MESSAGE, now SIGNATURE).
  • Improved setting of default qbits for DSA.
  • Fixed a crash when retrieving signature revocation reason.
  • Stop using expensive tests for key material validation.

CLI

  • rnpkeys: Removed a few redundant commands (--get-key, --print-sigs, --trusted-keys, ...).
  • rnpkeys: Added --secret option.
  • rnpkeys: Display 'ssb' for secret subkeys.
  • rnp: Added --list-packets parameters (--json, etc.).
  • rnp: Removed --show-keys.

FFI

  • Added rnp_version_commit_timestamp to retrieve the commit timestamp
    (for non-release builds).
  • Added a new (non-JSON) key generation API (rnp_op_generate_create etc.).
  • Added rnp_unload_keys function to unload all keys.
  • Added rnp_key_remove to unload a single key.
  • Expanded bit length support for JSON key generation.
  • Added rnp_key_get_subkey_count/rnp_key_get_subkey_at.
  • Added various key property accessors (rnp_key_get_bits, rnp_key_get_curve).
  • Added rnp_op_generate_set_protection_password.
  • Added rnp_key_packets_to_json/rnp_dump_packets_to_json.
  • Added rnp_key_get_creation, rnp_key_get_expiration.
  • Added rnp_key_get_uid_handle_at, rnp_uid_is_revoked, etc.
  • Added rnp_key_is_revoked and related functions to check for revocation.
  • Added rnp_output_to_path and rnp_output_finish.
  • Added rnp_import_keys.
  • Added rnp_calculate_iterations.
  • Added rnp_supports_feature/rnp_supported_features.
  • Added rnp_enable_debug/rnp_disable_debug.
  • Added rnp_key_get_primary_grip.
  • Added rnp_output_to_armor.
  • Added rnp_op_generate_set_request_password.
  • Added rnp_dump_packets_to_output.
  • Added rnp_output_write.
  • Added rnp_guess_contents.
  • Implemented rnp_op_set_file_name/rnp_op_set_file_mtime.
  • Added rnp_op_encrypt_set_aead_bits.
  • Added rnp_op_verify_signature_get_handle.
  • Added rnp_signature_packet_to_json.

Packaging

  • RPM: Split packages into librnp0, librnp0-devel, and rnp0.

OpenPGP signing key

Fingerprint: BEDBA05C1E6EE2DFB4BA72E1EC5D520AD90A7262

Version 0.12.0

02 Jun 10:05
@ni4 ni4
Compare
Choose a tag to compare

Support for extra ECC curves (Brainpool p256, p384, p512, secp256k1, x25519) and AEAD.

General

  • We now require Botan 2.8+.
  • Fixed key grip calculations for various key types.
  • Fixed SM2 signatures hashing the hash of the message. See comment in issue #436.
  • Added support for G10 ECC keys.
  • Fixed dumping of partial-length packets.
  • Added support for extra ECC curves:
    • Brainpool p256, p384, p512 ECDSA/ECDH
    • secp256k1 ECDSA/ECDH
    • x25519
  • Fixed AEAD with newer versions of Botan.
  • Removed a lot of legacy code.

CLI

  • rnp: Added -f/--keyfile option to load keys directly from a file.
  • rnp: Fixed issue with selecting G10 secret keys via userid.
  • rnpkeys: Added support for SM2 with arbitrary hashes.
  • redumper: Added -g option to dump fingerprints and grips.
  • redumper: Display key id/fingerprint/grip in packet listings.

FFI

  • Added FFI examples.
  • Fixed a regression with loading subkeys directly.
  • Implemented support for per-signature hash and creation/expiration time.
  • Added AEAD support.

OpenPGP signing key

Fingerprint: BEDBA05C1E6EE2DFB4BA72E1EC5D520AD90A7262

Version 0.11.0

02 Jun 10:03
@ni4 ni4
Compare
Choose a tag to compare

General

  • Remove some old SSH key support.
  • Add support for dynamically calculating the S2K iterations.
  • Add support for extracting the public key from the secret key.
  • Add support for merging information between keys.

CLI

  • Add options for custom S2K iterations/times (dynamic by default).

OpenPGP signing key

Fingerprint: BEDBA05C1E6EE2DFB4BA72E1EC5D520AD90A7262

Version 0.10.0

02 Jun 10:03
@ni4 ni4
Compare
Choose a tag to compare

General

  • Fixed some compiler warnings.
  • Switched armoring to use PRIVATE KEY instead of SECRET KEY.

ECDSA

  • Use the matching hash to be used for the deterministic nonce generation.
  • Check that the input is of the expected length.
  • Removed the code to truncate the ECDSA input since this is now handled by Botan.

FFI

  • Added enarmor and dearmor support.
  • Added library version retrieval.
  • Removed rnp_export_public_key, added rnp_key_export.

OpenPGP signing key

Fingerprint: BEDBA05C1E6EE2DFB4BA72E1EC5D520AD90A7262

Version 0.9.2

02 Jun 10:01
@ni4 ni4
Compare
Choose a tag to compare

General

  • Support for generation and verification of embedded signature subpacket for signing subkeys
  • Verification of public key signatures and key material
  • Improved performance of asymmetric operations (key material is now validated on load)

FFI

  • Fixed rnp_op_add_signature for G10 keys

OpenPGP signing key

Fingerprint: BEDBA05C1E6EE2DFB4BA72E1EC5D520AD90A7262

Version 0.9.1

02 Jun 10:00
@ni4 ni4
Compare
Choose a tag to compare

General

  • Added issuer fingerprint to certifications and subkey bindings.

CLI

  • Added support for keyid/fpr usage with (some) spaces and 0x prefix in
    operations (--sign, etc).

FFI

  • Fixed key search by fingerprint.

OpenPGP signing key

Fingerprint: BEDBA05C1E6EE2DFB4BA72E1EC5D520AD90A7262