Skip to content

v0.7.0
Compare
Choose a tag to compare
@arekinath arekinath released this 06 Sep 00:57
· 194 commits to main since this release
v0.7.0
5047acb

New features:

  • pivy-box: "key unlock" and "stream decrypt" can now accept a filename argument instead of reading stdin (and will include that filename in any generated recovery challenge-responses)
  • pivy-box: can now find templates at multiple paths, including in a system directory. On Linux, the default dir for new templates is now $HOME/.config/pivy/tpl and on OSX $HOME/Library/Preferences/pivy/tpl (the old directories will still be checked for templates)
  • pivy-agent: in -C mode, PID authorizations are now cached for 15 seconds (makes Manta tools especially nicer to use)
  • pivy-tool: add "update-keyhist" command, which scans all retired key slots and re-generates the PIV Key History object, to fix un-detected keys in retired key slots

Bug fixes:

  • All tools: now support using metadata/attestation information to detect when touch confirmation is required for a key and emit prompts to match. PIN prompting should now occur before touch.
  • Fix for some issues around using multiple local devices in order (e.g. in the same card reader) with pivy-box recovery
Assets 6
Loading