CHANGELOG.md

Changelog

Unreleased

Full Changelog

0.13.0 (2024-05-02)

Full Changelog

Added features

• Add support for credential update #97 and #99
• Prevent overwriting of credentials with Register #96

Fixed bugs:

• Confirm Credential removal with a touch #92
• Require PIN confirmation for registering ReverseHotp credentials #114

Removed

• Remove challenge-response implementation #83

Changed

• Update documentation #100
• Improved logging and usbip simulation #102
• Fix compilation of fuzz targets #104
• Remove unused interchange dependency #105
• Use trussed-auth 0.3.0 #109

v0.12.0 (2023-06-28)

Full Changelog

v0.12.0-rc1 (2023-06-28)

Full Changelog

Merged pull requests:

• force touch whenever a credential is deleted #93 (peterwilli)
• Do not panic while listing credentials #91 (szszszsz)
• Update usbip simulation to work with request cancellation #90 (szszszsz)

v0.11.0-interrupt.1 (2023-06-21)

Full Changelog

Fixed bugs:

• NK3AM fails to register a Credential in the clean state #88

Merged pull requests:

• Adapt to interrupt trussed changes #72 (sosthene-nitrokey)

0.11.0 (2023-05-30)

Full Changelog

Implemented enhancements:

• Add challenge-response support for KeepassXC #61
• Add Password Safe #60
• Extend compiler and clippy lints #39
• Extend Credential structure with Password Safe field #63 (szszszsz)

Closed issues:

• Use released version for trussed-auth #58
• Group attributes in Command::Credential per kind #66
• Add config option for the maximum number of credentials #62
• Finalize renaming to secrets-app #47
• Resetting strategy #43

Merged pull requests:

• Match trussed* dependencies to the used in NK3 v1.4.0 #80 (szszszsz)
• Ignore errors on factory reset, and start with the persistent storage #79 (szszszsz)

0.11.0-rc2 (2023-05-30)

Full Changelog

Implemented enhancements:

• Reuse compliance #77

Closed issues:

• Migrate bit manipulation to bitflags crate #78
• Resetting strategy #43
• Use cfg switch for no-encryption feature #23

Merged pull requests:

• Replace feature with a config switch for the debug mode #84 (szszszsz)
• Migrate list properties byte to bitflags #82 (szszszsz)
• Add copyright and spdx identifiers #81 (szszszsz)
• Match trussed* dependencies to the used in NK3 v1.4.0 #80 (szszszsz)
• Ignore errors on factory reset, and start with the persistent storage #79 (szszszsz)

0.11.0-rc1 (2023-05-25)

Full Changelog

Implemented enhancements:

• Add information about static password to List #68
• Add challenge-response support for KeepassXC #61
• Add Password Safe #60
• Return serial number #50
• Extend compiler and clippy lints #39
• Add challenge-response method for KeepassXC support #64 (szszszsz)
• Extend Credential structure with Password Safe field #63 (szszszsz)

Closed issues:

• Group attributes in Command::Credential per kind #66
• Add config option for the maximum number of credentials #62
• Finalize renaming to secrets-app #47

0.10.0 (2023-04-26)

Full Changelog

Implemented enhancements:

• Do not require PIN for OTP credentials at all #48
• Reverse HOTP: introduce delay on the failure to fight brute-force attack #13
• Update blinking handlers #4
• PIN-less credentials access with hardware key encryption #53 (szszszsz)
• Handle status changes #51 (szszszsz)

Closed issues:

• Release v0.10 #59

Merged pull requests:

• Use cbor_smol instead of trussed re-exports #54 (robin-nitrokey)

0.9.0 (2023-04-05)

Full Changelog

Merged pull requests:

• Bump trussed-auth #49 (sosthene-nitrokey)

0.8.0 (2023-03-08)

Full Changelog

Merged pull requests:

• Add encryption of TOTP secret #46 (sosthene-nitrokey)
• Quick corrections and backend debugging #45 (szszszsz)

0.7.0 (2023-03-03)

Full Changelog

Implemented enhancements:

• PIN-based encryption #37
• PIN verification as an alternative to the VALIDATE command #6
• Add PIN-based encryption #41 (szszszsz)

Fixed bugs:

• Application hangs after update from 0.3.0 to 0.6.0 if not reset #38
• Ignore the deserialization error, and use default state instead #40 (szszszsz)

Merged pull requests:

• Remove alloc crate #42 (robin-nitrokey)

0.6.0 (2023-02-24)

Full Changelog

Merged pull requests:

• Make encrypted_container no_std #36 (robin-nitrokey)
• Make storage location configurable #35 (robin-nitrokey)
• CI: add ref to the exact commit for pc-usbip-runner #33 (szszszsz)
• Bump dependencies #32 (robin-nitrokey)

0.5.0 (2023-02-03)

Full Changelog

Implemented enhancements:

• Prevent encrypted credentials switching #22
• Use CBOR for state serialization #17
• Add example #7
• Multipacket handling for credentials listing and other improvements #24 (szszszsz)
• Credentials Encryption #16 (szszszsz)

Fixed bugs:

• Write state only if changed #19
• State loading can crash #14

Closed issues:

• Correct CBOR serialization of the credentials #21
• Correct encapsulation #20

Merged pull requests:

• Test CI #18 (szszszsz)

0.4.0 (2022-12-06)

Full Changelog

Implemented enhancements:

• Check UP on important operations #9
• Return status code bytes #3
• Further fuzzing efforts and returning error codes #15 (szszszsz)

0.3.1 (2022-12-01)

Full Changelog

Implemented enhancements:

• Stability improvements #8
• Initial fuzzing support and fixes #11 (szszszsz)

Closed issues:

• Update documentation #12
• Handle parsing errors #5

0.3.0 (2022-11-18)

Full Changelog

Merged pull requests:

• Support CTAPHID transport #2 (szszszsz)

0.2.0 (2022-10-27)

Full Changelog

* This Changelog was automatically generated by github_changelog_generator