openssl_tpm2_engine/openssl_tpm2_engine.changes

-------------------------------------------------------------------
Fri Feb 28 15:10:33 UTC 2025 - James Bottomley <James.Bottomley@HansenPartnership.com>

- Update to version 4.4.2
  * Fix TLS certificate signing challenges
  * Fix openvpn using the tpm2 provider

-------------------------------------------------------------------
Tue Nov  5 14:19:12 UTC 2024 - James Bottomley <James.Bottomley@HansenPartnership.com>

- Update to version 4.4.1
  * OBS build fix

-------------------------------------------------------------------
Sat Nov  2 00:00:26 UTC 2024 - James Bottomley <James.Bottomley@HansenPartnership.com>

- Update to version 4.4.0
  * Use the NULL seed for salting sessions (and check against the kernel/file)
  * close weaknesses in key certification using the qualified name
  * 32 bit fixes

-------------------------------------------------------------------
Tue Aug  6 17:56:50 UTC 2024 - James Bottomley <James.Bottomley@HansenPartnership.com>

- Update to version 4.3.0
  * Add primary attestation commands
  * Add man page about the engine and its parameters

-------------------------------------------------------------------
Tue Jul 23 20:23:38 UTC 2024 - James Bottomley <James.Bottomley@HansenPartnership.com>

- Update to version 4.2.0
  * doc updates: typo fix, clarify boolean parsing rules and secret parameter
  * fix bug with no visible effect in the handling of wrapped secrets
  * SECURITY fix to salt all sessions
  * add ability to import RSA wrapped keys and sealed objects

-------------------------------------------------------------------
Fri Apr 19 15:50:29 UTC 2024 - James Bottomley <James.Bottomley@HansenPartnership.com>

- Update to version 4.1.2
  * test fixes for newer tpm emulators

-------------------------------------------------------------------
Tue Jan  1 16:07:25 UTC 2024 - James.Bottomley@HansenPartnership.com

- Update to version 4.1.1
  * fix 32 bit build

-------------------------------------------------------------------
Mon Dec 31 03:55:34 UTC 2023 - James.Bottomley@HansenPartnership.com

- Update to version 4.1.0
  * implement tpm2_PolicySecret

-------------------------------------------------------------------
Mon Dec  5 03:53:40 UTC 2023 - James.Bottomley@HansenPartnership.com

- Update to version 4.0.2
  * Fixes for openssl 3.2
  * fix for encrypted secret size
  * fix for swtpm and swtpm2 simultaneous install
  * gcc-13 fix
  * make signed_tpm2_policy match man page

-------------------------------------------------------------------
Wed Jul  5 19:40:20 UTC 2023 - James.Bottomley@HansenPartnership.com

- Update to version 4.0.1
  * Fixes for intel-tss and openssl < 3
  * Fix support for the non-reference swtpm (although you should use the
    reference implementation for testing)
  * Doc updates to the draft RFC to make it ready for ietf submission
  * Fix openssl BOOLEAN issues

-------------------------------------------------------------------
Wed Mar 29 13:28:51 UTC 2023 - James.Bottomley@HansenPartnership.com

- Update to version 4.0.0
  * New openssl-3 provider
  * update intel-tss for openssl-3
  * gcc-13 fix for enum/int confusion in prototypes

-------------------------------------------------------------------
Fri Mar 17 21:21:21 UTC 2023 - James.Bottomley@HansenPartnership.com

- Update to version 3.4.0
  * fix uninitialized variable in tpm2_try_policy()
  * fix importable key creation with Intel TSS
  * restructure directory layout to prepare for OpenSSL-3 provider
  * Fix memory leak of key authorization (3.3.2)

-------------------------------------------------------------------
Tue Jan 31 21:17:40 UTC 2023 - James.Bottomley@HansenPartnership.com

- Update to version 3.3.1
  * fix intermittent EC TPM_RC_KEY return
  * add import section to man pages
  * Add importable sealed data
  * Fix name hash for importable keys and data

-------------------------------------------------------------------
Fri Jan 12 20:58:15 UTC 2023 - James.Bottomley@HansenPartnership.com

- Update to version 3.2.1
  * Fix double free

-------------------------------------------------------------------
Fri Jan 12 19:50:38 UTC 2023 - James.Bottomley@HansenPartnership.com

- Update to version 3.2.0
  * Signed policies for keys and sealed data

-------------------------------------------------------------------
Fri Dec  2 17:43:52 UTC 2022 - James.Bottomley@HansenPartnership.com

- Update to version 3.1.2
  * Fix segfault in unseal_tpm2_key
  * Fix pcr sealing error in create_tpm2_key caused by uncleared stack

-------------------------------------------------------------------
Tue Mar  1 15:11:41 UTC 2022 - James.Bottomley@HansenPartnership.com

- Update to version 3.1.1
  * Fix use after free in dynamic engines

-------------------------------------------------------------------
Thu Feb 17 14:09:11 UTC 2022 - James.Bottomley@HansenPartnership.com

- Update to version 3.1.0
  * Bandaid openssl-3 support
  * direct pcr policy creation options
  * TPM key RFC

-------------------------------------------------------------------
Sun Apr  4 21:35:39 UTC 2021 - James.Bottomley@HansenPartnership.com

- Update to version 3.0.1
  * fix various memory leaks
  * add fix for applications which reduce privilege and can't write to tss dir
  * add support for Intel TSS

-------------------------------------------------------------------
Fri Jul  3 09:35:56 UTC 2020 - Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>

- Update tarball due to download_files error

-------------------------------------------------------------------
Thu Jul  2 15:03:09 UTC 2020 - James.Bottomley@HansenPartnership.com

- Update to version 2.4.2
  * Add every TPM supported curve (as defined by the TCG)
  * Fix a bug with explicitly parametrised curve handling (needed for BN)
  * Update the tests to be able to use swtpm
  * Allow loading public key without password

-------------------------------------------------------------------
Thu Mar 26 04:31:36 UTC 2020 - James.Bottomley@HansenPartnership.com

- Update to version 2.4.1
  * fixes for older OpenSSL and gcc
  * variable tpm_server location for testing

-------------------------------------------------------------------
Fri Mar 6 00:47:24 UTC 2020 - James.Bottomley@HansenPartnership.com

- Update to version 2.4.0
  * data seal/unseal handling
  * PKCS12 wrapping support

-------------------------------------------------------------------
Fri Jan 10 16:52:22 UTC 2020 - James.Bottomley@HansenPartnership.com

- Update to version 2.3.1
  * bug fixes
  * add handling for DER keys

-------------------------------------------------------------------
Sun Feb 24 17:10:22 UTC 2019 - James.Bottomley@HansenPartnership.com

- Update to version 2.3.0
  * add the ability to produce restricted (storage) keys with defined
    symmetric seeds
  * new load_tpm2_key command to load a key file at a NV index
- Version 2.2.0
  * Add support for non-PKCS1 padding
  * Fixups for engines and cross builds

-------------------------------------------------------------------
Wed Nov 14 14:43:17 PST 2018 - James.Bottomley@HansenPartnership.com

- Update to version 2.1.0:
  * Add importable keys feature

-------------------------------------------------------------------
Mon Nov 12 21:04:09 PST 2018 - James.Bottomley@HansenPartnership.com

- Update to version 2.0.1:
  * Fix name algorithm selection
  * Make policy correct for non sha256 name algorithms
  * add security to TPM decryption operations

-------------------------------------------------------------------
Mon Nov  5 07:37:09 PST 2018 - James.Bottomley@HansenPartnership.com

- Update to version 2.0.0:
  * Licence changed from GPL to LGPL (fixes openssl compatibility)
  * Key format changed for interoperability
  * OIDs updated with input from the TCG (new format only)

-------------------------------------------------------------------
Sat Aug 10 08:05:00 PDT 2018 - James.Bottomley@HansenPartnership.com

- Update to version 1.2.1:
  * Policy file support (fixed)