1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
|
-*- org -*-
#+TITLE: sequoia-openpgp NEWS – history of user-visible changes
#+STARTUP: content hidestars
* Changes in 1.17.0
** New functionality
- crypto::SessionKey::as_protected
- types::AEADAlgorithm::GCM
* Changes in 1.16.0
** New functionality
- Add KeyFlags::set_certification_to.
- Add KeyFlags::set_signing_to.
- Add KeyFlags::set_transport_encryption_to.
- Add KeyFlags::set_storage_encryption_to.
- Add KeyFlags::set_split_key_to.
- Add KeyFlags::set_group_key_to.
** Notable fixes
- Several parser bugs were fixed. These are all low-severity as
Rust correctly detects the out of bounds access and panics.
* Notable changes
- The crypto/botan feature now selects Botan's v3 interface. The
crypt/botan2 feature can be used to select Botan's v2 interface.
* Changes in 1.15.0
** New functionality
- StandardPolicy::accept_hash_property
* Notable changes
- Updated the crypto-rust backend.
- Updated the crypto-cng backend.
* Changes in 1.14.0
** New cryptographic backends
- We added a backend that uses Botan.
** New functionality
- crypto::mem::Protected::new
- crypto::mpi::SecretKeyMaterial::from_bytes
- crypto::mpi::SecretKeyMaterial::from_bytes_with_checksum
- fmt::hex::Dumper::with_offset
- parse::buffered_reader re-export
- policy::AsymmetricAlgorithm::BrainpoolP384
- RawCert implements Parse
** Deprecated functionality
- crypto::mpi::SecretKeyMaterial::parse
- crypto::mpi::SecretKeyMaterial::parse_with_checksum
* Changes in 1.13.0
** New cryptographic backends
- We added a backend that uses OpenSSL.
* New functionality
- RawCertParser
- RawCert
- RawPacket
* Changes in 1.12.0
- Bug fix release.
* Changes in 1.11.0
* New functionality
- Signature3 implements support for parsing, verifying, and
reserializing version 3 signature packages.
- AsymmetricAlgorithm implements PartialEq, Eq, and Copy.
- AsymmetricAlgorithm::variants.
- PublicKeyAlgorithm::variants.
- SymmetricAlgorithm::variants.
- AEADAlgorithm::variants.
- CompressionAlgorithm::variants.
- HashAlgorithm::variants.
- SignatureType::variants.
- ReasonForRevocation::variants.
- DataFormat::variants.
- packet::Tag::variants.
- SubpacketTag::variants.
- StandardPolicy::reject_all_hashes
- StandardPolicy::reject_all_critical_subpackets
- StandardPolicy::reject_all_asymmetric_algos
- StandardPolicy::reject_all_symmetric_algos
- StandardPolicy::reject_all_aead_algos
- StandardPolicy::reject_all_packet_tags
- StandardPolicy::accept_packet_tag_version
- StandardPolicy::reject_packet_tag_version
- StandardPolicy::reject_packet_tag_version_at
- StandardPolicy::packet_tag_version_cutoff
** Deprecated functionality
- StandardPolicy::packet_tag_cutoff
* Changes in 1.10.0
** New functionality
- Cert::insert_packets2
- Cert::insert_packets_merge
- crypto::ecdh::aes_key_wrap
- crypto::ecdh::aes_key_unwrap
- Error::UnsupportedCert2
- TryFrom<Packet> for Unknown
- types::{Curve, SymmetricAlgorithm, AEADAlgorithm,
PublicKeyAlgorithm}'s Display implementation now provides short
names by default. The long descriptions are provided by the
alternate formatter (e.g. =format!("{:#}", ...)=)
- cert::KeyBuilder
- cert::SubkeyBuilder
- HashAlgorithm::oid is available on all crypto backends
(previously only on Nettle)
** Deprecated functionality
- Error::UnsupportedCert, use Error::UnsupportedCert2 instead
- DataFormat::MIME, no replacement, see #863 for details
- PacketParser::encrypted, use the negation of PacketParser::processed
* Changes in 1.9.0
** New functionality
- AEADAlgorithm::nonce_size replaces AEADAlgorithm::iv_size
- crypto::backend
- Curve::field_size
- MPI::is_zero
- MPI::zero
- packet::Any
- Packet::version
- SignatureBuilder::set_reference_time
- SignatureBuilder::effective_signature_creation_time
** Deprecated functionality
- armor::Reader::new, use armor::Reader::from_reader instead
- message::Token is not covered by SemVer guarantees, DO NOT match on it
- AEADAlgorithm::iv_size, use AEADAlgorithm::nonce_size
* Changes in 1.8.0
** New functionality
- crypto::Signer::acceptable_hashes
- Fingerprint::V5
* Changes in 1.7.0
** Notable fixes
- sequoia-openpgp can now be compiled to WASM.
- The MSRV is now 1.56.1.
* Changes in 1.6.0
** Notable fixes
- Decryption of encrypted messages and verification of
inline-signed messages is now considerably faster, as is ASCII
Armor encoding and decoding.
** New functionality
- CertRevocationBuilder::add_notation
- CertRevocationBuilder::set_notation
- KeyFlags::clear_group_key
- SubkeyRevocationBuilder::add_notation
- SubkeyRevocationBuilder::set_notation
- UserAttributeRevocationBuilder::add_notation
- UserAttributeRevocationBuilder::set_notation
- UserIDRevocationBuilder::add_notation
- UserIDRevocationBuilder::set_notation
* Changes in 1.5.0
** Notable changes
- This crate is now licensed under the LGPL 2.0 or later.
* Changes in 1.4.0
** New cryptographic backends
- We added a backend based on the RustCrypto crates.
** New functionality
- CipherSuite::is_supported
- MPI::value_padded
- Preferences::policy_uri
- ProtectedMPI::value_padded
- TSK::eq
- ValidAmalgamation::revocation_keys
- ValidCert::policy_uri
- ValidCert::revocation_keys
** Notable fixes
- Filters set using CertParser::unvalidated_cert_filter are now
preserved during iterations.
* Changes in 1.3.1
** Notable fixes
- Fixed a crash resulting from unconstrained, attacker-controlled
heap allocations.
* Changes in 1.3.0
** New functionality
- CertBuilder::add_subkey_with
- CertBuilder::add_user_attribute_with
- CertBuilder::add_userid_with
- ComponentBundle::attestations
- Encryptor::with_session_key
- Signature::verify_user_attribute_attestation
- Signature::verify_userid_attestation
- SignatureBuilder::pre_sign
- SignatureBuilder::set_attested_certifications
- SignatureType::AttestationKey
- SubpacketAreas::MAX_SIZE
- SubpacketAreas::attested_certifications
- SubpacketTag::AttestedCertifications
- SubpacketValue::AttestedCertifications
- UserAttributeAmalgamation::attest_certifications
- UserIDAmalgamation::attest_certifications
- ValidUserAttributeAmalgamation::attest_certifications
- ValidUserAttributeAmalgamation::attestation_key_signatures
- ValidUserAttributeAmalgamation::attested_certifications
- ValidUserIDAmalgamation::attest_certifications
- ValidUserIDAmalgamation::attestation_key_signatures
- ValidUserIDAmalgamation::attested_certifications
** Notable fixes
- Improve Cert::insert_packets runtime from O(n^2) to O(n log n).
- CertParser returned errors out of order (#699).
* Changes in 1.1.0
** New functionality
- The new regex module provides regular expression support for
scoping trust signatures.
- Sequoia now supports the Cleartext Signature Framework.
- ComponentAmalgamation::signatures
- ComponentBundle::signatures
- Fingerprint::to_spaced_hex
- HashAlgorithm::text_name
- KeyHandle now implements FromStr
- KeyHandle::is_invalid
- KeyHandle::to_hex
- KeyHandle::to_spaced_hex
- KeyID::to_spaced_hex
- Signature4::hash_for_confirmation
- Signature::hash_for_confirmation
- TSK::armored
- ValidComponentAmalgamation::signatures
** Notable fixes
- Fixed two crashes related to detached signature verification.
- Fixed a parsing bug where the parser did not consume all data in
an compressed data packet.
* Changes in 1.0.0
This is the initial stable release.
|
