CHANGES

   1 CHANGES - changes for swtpm
   2
   3 version 0.4.0:
   4   - swtpm:
   5     - Invoke print capabilites after choosing TPM version
   6     - Add some recent syscalls to seccomp blacklist
   7   - swtpm_cert:
   8     - Support --ecc-curveid option to pass curve id
   9   - swtpm_setup & related scripts:
  10     - Added support for RSA 3072 keys and ECC NIST P386 curves; default
  11       RSA keysize is still 2048;
  12     - Added support for --rsa-keysize option
  13     - Extend script to create a CA using a TPM 2 for signing
  14   - tests:
  15     - Use the IBM TSS2 v1.5.0's test suite
  16     - Add test case for loading of an NVRAM completely full with keys
  17     - various other
  18   - build-sys:
  19     - clang: properly test for linker flag 'now' and 'relro'
  20     - Gentoo: explicitly link libswtpm_libtpms with -lcrypto
  21
  22 version 0.3.0:
  23   - swtpm:
  24       - Support for applying 'TPM Startup' command during initialization
  25       - Use writev_full rather than writev; fixes --vtpm-proxy EIO error
  26       - Only accept() new client ctrl connection if we have none (bugfix)
  27   - swtpm_setup & related scripts:
  28       - Support whitespaces in filenames and paths
  29       - Do not fail on future PCR banks' hashes
  30   - swtpm_cert:
  31       - Fix OIDs for TPM 2 platforms data
  32       - Option parsing cleanup
  33       - Support for passing password in various forms
  34       - Use gnutls_x509_crt_get_subject_key_id API call for subj keyId
  35       - Support 64bit serial numbers read from command line
  36   - swtpm_ioctl:
  37       - Block SIGPIPE so we can get EPIPE on write()
  38   - swtpm_bios:
  39       - Block SIGPIPE so we can get EPIPE on write()
  40   - tests:
  41       - Increased timeouts and better support for running tests with
  42         executables run by valgrind
  43       - Allow running tests with choice of seccomp profile option
  44         (SWTPM_TEST_SECCOMP_OPT) to enable building for Ubuntu
  45       - Various cleanups & fixes
  46   - SELinux:
  47       - More rules added for support on F30
  48
  49 version 0.2.0:
  50   - Linux: swtpm now runs with a seccomp profile (blacklist) if compiled with
  51            libseccomp support
  52   - Added subpport for passing key and passphrase via file descriptor
  53   - TPM 2 commands can now be prefixed by 'the TCG header' and responses will
  54     have a 4-byte prefix and 4-byte suffix.
  55   - Added --print-capabilities command line option
  56   - Proper handling on EINTR on read, poll, and write
  57
  58 version 0.1.0:
  59   first public release