0.6.0 (2020-10-20)
Implemented enhancements:
- Add multitenancy testing infrastructure 👩🔧 #245
- Delete "Provider" suffix out of provider names #134
- Improve error message on service startup #260 (ionut-arm)
Fixed bugs:
Closed issues:
- Add authenticator configuration #270
- Assemble a PR checklist for code reviewers #258
- Adjust README disclaimer wording #231
Merged pull requests:
- Add multitenancy tests #276 (hug-dev)
- Put config tests in all_providers #275 (hug-dev)
- Remove warnings about parsec and parsec-clients #274 (hug-dev)
- Add authentication configuration #273 (hug-dev)
- Refactored provider names #263 (samwell61)
- Add list keys #261 (joechrisellis)
0.5.0 (2020-10-02)
Implemented enhancements:
- Creating a build-time configuration file #256
- Merge integration tests in E2E test suite #228
- Support dbus-parsec with NXP secureobj library #223
- Verify which dependencies can/should be updated #158
- Add more test cases #151
- Test Parsec installation as a systemd daemon #49
- Improve E2E testing #253 (ionut-arm)
- Upgrade and clean dependencies #246 (hug-dev)
- Import private key support for TPM provider #243 (joechrisellis)
- Allow software operations in PKCS11 provider #241 (ionut-arm)
- Improve key metadata handling #240 (ionut-arm)
- Add support for
psa\_generate\_randomoperation for MbedCrypto provider #208 (joechrisellis)
Fixed bugs:
- Memory cleanup of sensitive data #122
- Fix attribute conversion in PKCS11 provider #254 (ionut-arm)
- Fix sign attribute in PKCS11 #252 (ionut-arm)
- Add Uuid from the interface directly #242 (hug-dev)
- Add
buffer\_size\_limitconfig option for providers #233 (joechrisellis)
Security fixes:
Closed issues:
- Implement ListAuthenticators #216
- Better error message when file not found #210
- Implement an authenticator based on the domain socket peer credential #200
Merged pull requests:
- Add Unix peer credentials authenticator #214 (joechrisellis)
0.4.0 (2020-09-01)
Implemented enhancements:
- Implement asymmetric encrypt/decrypt in the PKCS#11 provider #224
- Implement asymmetric encrypting/decrypting for TPM provider #217
- Create a Parsec Command Line Interface Client #202
- Create a mechanism for the listener to pass system-level data to the authenticator #199
- Auto create
/tmp/parsecwith correct permissions on startup #195 - Update attribute handling in PKCS11 provider #227 (ionut-arm)
- Add asymmetric encryption support to TPM provider #225 (ionut-arm)
- Improve error message when config file is not found #211 (ionut-arm)
Fixed bugs:
- Update Adam Parco email address in maintainers files #230
- Update email address #235 (hug-dev)
- Bugfix: fix off-by-one error (default body length limit) #234 (joechrisellis)
- Fix clippy errors #206 (ionut-arm)
Closed issues:
- Add an option to pass a path to a build-config file #174
Merged pull requests:
- Add missing_docs lint and missing docs #236 (hug-dev)
- Added aead encrypt decrypt, hash compute compare and raw key agreement #229 (sbailey-arm)
- Fix test and enable Travis #221 (ionut-arm)
- Add implementation for ListAuthenticators operation #220 (joechrisellis)
- Add check to prevent the Parsec service from running as root #219 (joechrisellis)
- CoreProvider can query the other providers #215 (ionut-arm)
- Rebase on new tss_esapi #213 (puiterwijk)
- Add Asymmetric Encrypt/Decrypt to mbed supported opcodes #212 (puiterwijk)
- Create
Connectionabstraction for client communication #207 (joechrisellis) - Added user and group checks. Auto create socket dir. #205 (sbailey-arm)
0.3.0 (2020-07-16)
Implemented enhancements:
- Create a Mbed Crypto Secure Element driver calling Parsec Rust Client #128
- Threat model of Parsec #89
- Precise the providers' order importance #203 (hug-dev)
- Keep list_providers order; add cfg tests #197 (ionut-arm)
Merged pull requests:
- Added PsaExportKey #204 (sbailey-arm)
- Migrated uses of a locally declared RsaPublic key to new create picky-asn1-x509 #201 (sbailey-arm)
- Added asymmetric encrypt and decrypt to Mbed Crypto provider #196 (sbailey-arm)
0.2.0 (2020-07-02)
Implemented enhancements:
- Further simplification of the Mbed Crypto provider #187
- Create config "service" #181
- Use psa-crypto crate in the Mbed Crypto Provider #177
- Have a real integration test example #161
- Separate provider code into modules #133
- Update with PSA Crypto 1.0.0 interface #129
- Create a Parsec Rust Client #127
- TPM provider should establish most-secure primitives for itself #121
- Improvements for tests/ci.sh #108
- Split out ProviderConfig #103
- Check clippy::pedantic lints #100
- Modify configuration to have provider-specific table #70
- Create a PSA Crypto Rust wrapper crate #62
- Add TCTI configuration functionality #194 (ionut-arm)
- Updated Parsec to use latest parsec-interface (0.17.0) #193 (sbailey-arm)
- Modify socket path #192 (hug-dev)
- Changed local_ids for Atomic counter and removed key_slot_semaphore. #191 (sbailey-arm)
- Removed duplicate macros for sign output size and export pub key size. #190 (sbailey-arm)
- Move Parsec over to psa-crypto #186 (sbailey-arm)
- Add trace logging on Provide method calls #185 (hug-dev)
- Update fuzz target #184 (ionut-arm)
- Improve log security #183 (ionut-arm)
- Add GlobalConfig #182 (ionut-arm)
- Add community repo link #180 (hug-dev)
- Use crates.io version of the interface #179 (hug-dev)
- Import the newest Parsec interface #178 (hug-dev)
- Improve handling of list_opcodes #173 (ionut-arm)
- Add default context cipher selection for TPM provider #172 (ionut-arm)
- Add ECDSA support for TPM provider #171 (ionut-arm)
- Improve TPM provider #168 (ionut-arm)
- Improve digest handling in PKCS11 provider #167 (ionut-arm)
- Split provider code into separate modules #165 (ionut-arm)
- Add integration test #162 (ionut-arm)
- Move end to end tests to own crate #160 (ionut-arm)
- Move test client back in the Parsec repo #150 (ionut-arm)
- Remove stress test on Travis CI for PKCS 11 #145 (hug-dev)
- Add tests checking if key attributes are respected #135 (hug-dev)
- Add Contributors file #132 (ionut-arm)
- Update with the latest interface #131 (hug-dev)
- Improvments for tests/ci.sh #117 (anta5010)
Fixed bugs:
- Integration tests should be isolated in their crate #155
- Key should be deleted from the KIM if generation/import fails #139
- Fixed PKCS#11 provieder failing failed_created_key_should_be_removed test #188 (sbailey-arm)
- Replace calendar iframe with URL #166 (ionut-arm)
- Fix clippy errors #157 (ionut-arm)
- Allow PKCS11 tests to fail on Travis #154 (ionut-arm)
Security fixes:
Closed issues:
- Allow TPM owner hierarchy auth to be non-string #120
Merged pull requests:
- Update partners file with web links and logos #159 (paulhowardarm)
- Update CONTRIBUTORS.md #143 (Superhepper)
- A few more README updates including fixes for broken doc links #141 (paulhowardarm)
- README enhancements, PARTNERS file and new visual style for the project #136 (paulhowardarm)
0.1.2 (2020-02-27)
Implemented enhancements:
- Modify configuration to have provider-specific structs #114 (anta5010)
- Improve code documentation #113 (ionut-arm)
0.1.1 (2020-02-21)
Implemented enhancements:
- Check for more Clippy lints #91
- Switch to picky-asn1-der for ASN.1-DER parsing #84
- Have all the providers dynamically loadable #79
- Pass config.toml path as command-line argument #78
- Convert Key ID Manager String errors to ResponseStatus in the KIM itself #77
- Test strategy for our providers on the CI #69
- Add a PKCS 11 Provider #66
- Add a Trusted Platform Module Provider #65
- Assess the contents of unsafe blocks in Mbed Provider #63
- Drop key handles implicitly #57
- Add cross-compilation to Aarch64 logic and investigate CI testing #55
- Add fuzz tests #54
- Update to Mbed Crypto v2.0.0 #38
- Improve logging message structure #36
- Make PARSEC a daemon #35
- Improve builders for service components #31
- Implement a thread pool #29
- Use dynamically-sized buffers in Mbed provider #27
- Implement configuration #26
- Prepare for upload to crates io #109 (ionut-arm)
- Add cargo clippy lints to the CI #99 (hug-dev)
- Implement fuzz testing #97 (ionut-arm)
- Add body length limit #96 (ionut-arm)
- Ensure the safety of unsafe blocks #93 (hug-dev)
- Replace most panicking behaviours with Result #92 (hug-dev)
- Modify Travis CI test script #90 (hug-dev)
- Deny compilation for some rustc lints #87 (hug-dev)
- Switch crates to use picky-asn1-der #85 (hug-dev)
- Modify tests directory structure #83 (hug-dev)
- Allow optional providers and key ID managers #82 (hug-dev)
- Add a command-line option to select configuration #81 (hug-dev)
- Add a TPM provider #75 (hug-dev)
- Add SIGHUP signal handling to reload configuration #71 (hug-dev)
- Add a PKCS 11 provider #68 (hug-dev)
- Simplify the README.md file #67 (hug-dev)
- Add cross compilation tests to the CI with cross #64 (hug-dev)
- Add cross-compilation logic for Mbed Crypto #61 (hug-dev)
- Make key slot release implicit #59 (ionut-arm)
- Make buffers dynamically sized in Mbed Provider #58 (ionut-arm)
- Upgrade dependency on Mbed Crypto to v2.0.0 #56 (ionut-arm)
- Add provider configuration #51 (ionut-arm)
- Improve handling of systemd activation #50 (lnicola)
- Replace println calls with log crate #48 (hug-dev)
- Add a compile-time option for a daemon binary #46 (hug-dev)
- Add service builder and configuration #44 (ionut-arm)
- Add stress test to the suite #42 (ionut-arm)
- Add SIGTERM handler for a graceful shutdown #39 (hug-dev)
- Add a GitHub Actions workflow for CI #34 (hug-dev)
- Add and improve component builders #33 (ionut-arm)
Fixed bugs:
- TPM provider must support Owner Hierarchy authentication #102
- Audit our use of panicking #74
- Audit our use of unsafe code #73
- Review response codes returned by providers #72
- Warning during compilation about
llvm-config --prefix#60 - Key handle manipulation is not thread-safe in Mbed Crypto #40
- Add owner hierarchy auth param #104 (ionut-arm)
- Add a verify-only integration test #88 (hug-dev)
- Add sign to ASN.1 Integer types for RSAPublicKey #86 (hug-dev)
- Make sure Cargo features work #76 (hug-dev)
- Make UnixStreams block on read/write #47 (ionut-arm)
- Keep key ID within bounds for Mbed provider #45 (ionut-arm)
- Add locking around key handle operations in mbed provider #41 (ionut-arm)
- Use new version of test client to fix CI #37 (hug-dev)
Closed issues:
- Deny compilation if there is any warning #80
Merged pull requests:
- Remove references to key lifetime #52 (hug-dev)
- Use thread pool instead of new thread per request #30 (ionut-arm)
- Add the integration tests in the parsec repository #28 (hug-dev)
0.1.0 (2019-10-09)
Closed issues:
- Building/running PARSEC #4
- Add Jenkins, CI/CD, unit testing, and code coverage #3
- Implement stubbed server API for client testing #2
- Create PASL golang client API #1
Merged pull requests:
- Add versioning requirement on the interface #25 (hug-dev)
- Fixed Ionut's email address #24 (robdimond-arm)
- Remove Go client from PARSEC service #22 (hug-dev)
- Add documentation updates #21 (hug-dev)
- Docs: Update documentation to reflect the source code state #20 (ionut-arm)
- Add support for ListProviders operation update #19 (hug-dev)
- Add a MAINTAINERS file #18 (hug-dev)
- Merge Integration into Master #17 (ionut-arm)
- Update conn and key interfaces for initialization #16 (jamesonhyde-docker)
- Update response to handle a mis-aligned header and response test #15 (jamesonhyde-docker)
- Various improvements of the service internals #14 (hug-dev)
- Go client implementations #12 (jamesonhyde-docker)
- update logo from plasma to parsec #11 (adamparco)
- Initial go client interface for signing keys #10 (jamesonhyde-docker)
- Provide minimal software solution based on Mbed Crypto #9 (hug-dev)
- Add API landing page #8 (ionut-arm)
- Adding doc fragments. #7 (ionut-arm)
- update name from PASL to PLASMA #6 (adamparco)
* This Changelog was automatically generated by github_changelog_generator