solokeys/libu2f-host
0
0
Fork 0
mirror of https://github.com/solokeys/libu2f-host.git synced 2026-03-11 17:14:36 -07:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
libu2f-host/NEWS
T
Klas Lindfors ca326ac304 bump versions after release
2019-03-06 16:32:33 +01:00

143 lines
3.3 KiB
Plaintext
Raw Permalink Blame History

libu2f-host NEWS -- History of user visible changes.
* Version 1.1.10 (unreleased)
* Version 1.1.9 (released 2019-03-06)
** Fix CID copying from the init response.
This broke compatibility with some devices.
* Version 1.1.8 (released 2019-03-05)
** Add udev rules.
** Drop 70-old-u2f.rules and use 70-u2f.rules for everything.
** Use a random nonce for setting up CID to prevent fingerprinting.
** Parse the response to init in a more stable way.
The old parser could leak 4 bytes of uninitialized stack back to the device.
Reported by Christian Reitter.
* Version 1.1.7 (released 2019-01-08)
** Fix for trusting length from deivce in device init.
Reported by Christian Reitter.
** Fix for buffer overflow when receiving data from device.
** Add udev rules for some new devices.
* Version 1.1.6 (released 2018-05-15)
** Change waiting logic on authenticate to allow for faster feedback.
* Version 1.1.5 (released 2018-03-07)
** Fix refcount when adding json_objects.
** Handle fido2 keepalive.
** Add udev rules for more devices.
* Version 1.1.4 (released 2017-09-01)
** Added more u2f devices to the udev rulesets.
** Increase buffer size, allowing for bigger certificates.
** Add u2f.conf.sample for FreeBSD permission handling.
* Version 1.1.3 (released 2016-10-04)
** Added more u2f devices to the udev rulesets.
** Fixup mac builds.
* Version 1.1.2 (released 2016-06-22)
** Make authenticate return U2FH_OK if touch is set to not needed.
Also minor fixes to error output of authenticate.
** Documentation fixes.
** Compilation fixes on visual studio.
** Add udev rules for Feitian devices.
** Add optional cmake build.
** Change license of the commandline tool to LGPL 2.1+
* Version 1.1.1 (released 2016-03-14)
** Use correct index in u2fh_devs_discover()
** Fix an issue where we left the authenticate loop early.
** Fix an issue where authenticate remembered which devices to skip.
** Stop validating the scheme of the origin.
** Fixup a crash in u2fh_devs_discover() with closing unplugged devices.
** Documentation fixes.
* Version 1.1.0 (released 2016-02-15)
** Add udev rules for more devices.
** Don't return success when no data is received.
** Fix typos.
** Make send_apdu send data like chrome does.
** Don't release json object that we don't own no more.
** Don't do memcmp on uninitialized memory.
** Add u2fh_authenticate2() and u2fh_register2().
** Remove base64 padding (required by spec).
** Use unsigned ints to prevent buffer overflows.
* Version 1.0.0 (released 2015-08-27)
** Add udev rules for older version of udev.
** Add pam:// as an allowed protocol.
** Stop using sleep(), use Sleep() on windows and usleep() on others.
** Fixup tool name in help and manpage.
** Add a timeout to the register and authenticate actions.
* Version 0.0.4 (released 2015-01-22)
** Add an exponential growing timeout for slow devices (PlugUp).
* Version 0.0.3 (released 2015-01-08)
** Change license to LGPLv2+ for the library.
** Some improvements to internal communication code.
** Some debug mode improvements, from Bram Vandoren.
* Version 0.0.2 (released 2014-11-28)
** Add more devices to udev.
* Version 0.0.1 (released 2014-10-29)
** Use semantic versioning.
** Correct json key for keyHandle in signResponse
** Fix the udev rule
** Add option to install udev rule
* Version 0.0 (released 2014-09-16)
** Initial release.
Reference in New Issue View Git Blame Copy Permalink