Releases: rnpgp/rnp
Releases · rnpgp/rnp
Version 0.13.1
Security
- rnpkeys: Fix issue #1030 where rnpkeys would generate unprotected secret keys.
OpenPGP signing key
Version 0.13.0
Extended FFI and CLI interfaces, giving more flexibility and control to the user.
General
- Fixed a double-free on invalid armor headers.
- Fixed broken versioning when used as a git submodule.
- Fixed an infinite loop on parsing truncated armored keys.
- Fixed armored stream parsing to be more flexible and allow blank lines before trailer.
- Fixed the armor header for detached signatures (previously MESSAGE, now SIGNATURE).
- Improved setting of default qbits for DSA.
- Fixed a crash when retrieving signature revocation reason.
- Stop using expensive tests for key material validation.
CLI
- rnpkeys: Removed a few redundant commands (--get-key, --print-sigs, --trusted-keys, ...).
- rnpkeys: Added --secret option.
- rnpkeys: Display 'ssb' for secret subkeys.
- rnp: Added
--list-packets
parameters (--json
, etc.). - rnp: Removed
--show-keys
.
FFI
- Added
rnp_version_commit_timestamp
to retrieve the commit timestamp
(for non-release builds). - Added a new (non-JSON) key generation API (
rnp_op_generate_create
etc.). - Added
rnp_unload_keys
function to unload all keys. - Added
rnp_key_remove
to unload a single key. - Expanded bit length support for JSON key generation.
- Added
rnp_key_get_subkey_count
/rnp_key_get_subkey_at
. - Added various key property accessors (
rnp_key_get_bits
,rnp_key_get_curve
). - Added
rnp_op_generate_set_protection_password
. - Added
rnp_key_packets_to_json
/rnp_dump_packets_to_json
. - Added
rnp_key_get_creation
,rnp_key_get_expiration
. - Added
rnp_key_get_uid_handle_at
,rnp_uid_is_revoked
, etc. - Added
rnp_key_is_revoked
and related functions to check for revocation. - Added
rnp_output_to_path
andrnp_output_finish
. - Added
rnp_import_keys
. - Added
rnp_calculate_iterations
. - Added
rnp_supports_feature
/rnp_supported_features
. - Added
rnp_enable_debug
/rnp_disable_debug
. - Added
rnp_key_get_primary_grip
. - Added
rnp_output_to_armor
. - Added
rnp_op_generate_set_request_password
. - Added
rnp_dump_packets_to_output
. - Added
rnp_output_write
. - Added
rnp_guess_contents
. - Implemented
rnp_op_set_file_name
/rnp_op_set_file_mtime
. - Added
rnp_op_encrypt_set_aead_bits
. - Added
rnp_op_verify_signature_get_handle
. - Added
rnp_signature_packet_to_json
.
Packaging
- RPM: Split packages into librnp0, librnp0-devel, and rnp0.
OpenPGP signing key
Version 0.12.0
Support for extra ECC curves (Brainpool p256, p384, p512, secp256k1, x25519) and AEAD.
General
- We now require Botan 2.8+.
- Fixed key grip calculations for various key types.
- Fixed SM2 signatures hashing the hash of the message. See comment in issue #436.
- Added support for G10 ECC keys.
- Fixed dumping of partial-length packets.
- Added support for extra ECC curves:
- Brainpool p256, p384, p512 ECDSA/ECDH
- secp256k1 ECDSA/ECDH
- x25519
- Fixed AEAD with newer versions of Botan.
- Removed a lot of legacy code.
CLI
- rnp: Added -f/--keyfile option to load keys directly from a file.
- rnp: Fixed issue with selecting G10 secret keys via userid.
- rnpkeys: Added support for SM2 with arbitrary hashes.
- redumper: Added -g option to dump fingerprints and grips.
- redumper: Display key id/fingerprint/grip in packet listings.
FFI
- Added FFI examples.
- Fixed a regression with loading subkeys directly.
- Implemented support for per-signature hash and creation/expiration time.
- Added AEAD support.
OpenPGP signing key
Version 0.11.0
General
- Remove some old SSH key support.
- Add support for dynamically calculating the S2K iterations.
- Add support for extracting the public key from the secret key.
- Add support for merging information between keys.
CLI
- Add options for custom S2K iterations/times (dynamic by default).
OpenPGP signing key
Version 0.10.0
General
- Fixed some compiler warnings.
- Switched armoring to use PRIVATE KEY instead of SECRET KEY.
ECDSA
- Use the matching hash to be used for the deterministic nonce generation.
- Check that the input is of the expected length.
- Removed the code to truncate the ECDSA input since this is now handled by Botan.
FFI
- Added enarmor and dearmor support.
- Added library version retrieval.
- Removed rnp_export_public_key, added rnp_key_export.
OpenPGP signing key
Version 0.9.2
General
- Support for generation and verification of embedded signature subpacket for signing subkeys
- Verification of public key signatures and key material
- Improved performance of asymmetric operations (key material is now validated on load)
FFI
- Fixed rnp_op_add_signature for G10 keys
OpenPGP signing key
Version 0.9.1
General
- Added issuer fingerprint to certifications and subkey bindings.
CLI
- Added support for keyid/fpr usage with (some) spaces and 0x prefix in
operations (--sign, etc).
FFI
- Fixed key search by fingerprint.