- Only new exports added so bump minor.
- Cleanup WANTLIB
- Fix MASTER_SITE URL
- Cleanup plugin configuration
LibreSSL patches from Gentoo developer Stefan Strogin from here:
3e69b18db7
hitch-1.5.2 (2019-11-27)
- Fix a problem introduced in the previous release that prevented us from
running as a non-privileged user (Issue: 322).
hitch-1.5.1 (2019-11-26)
- Support for TCP Fast Open. Is is disabled by default (Issue: 185)
- Various code cleanups and minor bug fixes.
Upstream reworked their privdrop code and I have neither time nor further
interest in maintaining pledge patches, so drop support for it.
- Only new exports added so bump minor.
- Cleanup WANTLIB
- Fix MASTER_SITE URL
- Cleanup plugin configuration
LibreSSL patches from Gentoo developer Stefan Strogin from here:
3e69b18db7
Tested by landry@ with qgis
things. Most notably it allows testing RSA_padding_check_PKCS1_OAEP_mgf1()
and dlg's XChaCha20-Poly1305 implementation.
ok fcambus (earlier diff) jsing
Fixes some bugs and adds support for a new hash function. Changelog can
be found at https://github.com/rhash/RHash/blob/v1.3.8/ChangeLog.
Additional changes:
- Change HOMEPAGE; the old one gave a 404
- Take MAINTAINER
OK sthen@
use three scrypt backends; one in hashlib in python itself, one is
py-scrypt, and one is an internal slow pure-python implementation.
hashlib in our Python packages doesn't include scrypt (this requires
OpenSSL 1.1+'s scrypt code and isn't supported in libressl), and slow
pure-python implementation is slow, so provide the best available one.
This is a set of Python bindings for the scrypt key derivation function.
Scrypt is useful when encrypting passwords as it is possible to specify a
*minimum* amount of time to use when encrypting and decrypting. If, for
example, a password takes 0.05 seconds to verify, a user won't notice
the slight delay when signing in, but doing a brute force search of
several billion passwords will take a considerable amount of time. This
is in contrast to more traditional hash functions such as MD5 or the SHA
family which can be implemented extremely fast on cheap hardware.
The YubiKey Manager can configure FIDO2, OTP and PIV functionality on
a YubiKey. It works with any currently supported YubiKey. You can also
use the tool to check the type and firmware of a YubiKey. In addition,
you can use the extended settings to specify other features, such as to
configure 3-second long touch.
Provides library functionality for communicating with a FIDO device
over USB as well as verifying attestation and assertion signatures.
This library aims to support the FIDO U2F and FIDO 2.0 protocols for
communicating with a USB authenticator via the Client-to-Authenticator
Protocol (CTAP 1 and 2). In addition to this low-level device access,
classes defined in the fido2.client and fido2.server modules implement
higher level operations which are useful when interfacing with an
Authenticator, or when implementing WebAuthn support for a Relying
Party.
As warned by upstream, "This project is in beta. Expect things to
change or break at any time!" - it is currently known not to work on
OpenBSD with some device types.
From Lucas Raab < tuftedocelot at fastmail dot fm >, thanks!
Feedback from Georg Steuck
Feedback and OK kmos (earlier version)
Feedback and OK sthen
- build eapol_test, it's a useful way to test RADIUS servers + EAP
- rather than using a whole new build config file, copy and patch the
upstream default, making it easier to incorporate upstream changes in new
versions, and see what we have/haven't enabled
- replace /dev/urandom with arc4random_buf
25 March 2019
- Fix a socket issue when pcscd is used inside LXC container
- pcsc-spy: always provide a total time of execution
- Fix resource leak if SCardEstablishContext() fails
- Fix realloc(3) error handling (possible memory leak)
- Remove usage of function chmod(2) to use fchmod(2) (fix race condition)
1.8.24
12 October 2018
- the project moved to https://pcsclite.apdu.fr/
- SCardGetStatusChange(): Fix a rare race condition
- SCardReleaseContext(): do not release a lock owned by another context
- SCardReconnect(): suspend card auto power off
- Allow "=" in serial driver filenames
- Add the thread id in the pcscd log lines
- pcsc-spy: correctly handle incomplete log file
- Simclist: avoid to divide by zero in list_findpos()
- Some other minor improvements
No problems with a Yubikey NEO.
