Releases: keylime/rust-keylime
Releases Β· keylime/rust-keylime
v0.2.9
What's Changed
- cargo: Bump retry-policies to version 0.4.0 by @ansasaki in #1072
- Remove unnecessary configuration fields by @sarroutbi in #1071
- Fix IMA log format (it must be 'text/plain') by @sarroutbi in #1073
- Fix boot time retrieval by @sarroutbi in #1078
- Use verifier-provided interval for continuous attestation timing by @sergio-correia in #1079
- Fix clippy warnings by @ansasaki in #1080
- build(deps): bump pest from 2.8.0 to 2.8.1 by @dependabot[bot] in #1027
- build(deps): bump clap from 4.5.39 to 4.5.45 by @dependabot[bot] in #1076
- build(deps): bump openssl from 0.10.72 to 0.10.73 by @dependabot[bot] in #1015
- build(deps): bump cfg-if from 1.0.0 to 1.0.1 by @dependabot[bot] in #1023
- build(deps): bump actions/checkout from 4 to 5 by @dependabot[bot] in #1075
- build(deps): bump actix-web from 4.10.2 to 4.11.0 by @dependabot[bot] in #1025
- build(deps): bump glob from 0.3.2 to 0.3.3 by @dependabot[bot] in #1081
- build(deps): bump libc from 0.2.172 to 0.2.175 by @dependabot[bot] in #1087
- build(deps): bump quote from 1.0.35 to 1.0.40 by @dependabot[bot] in #1088
- Enhance Evidence Handling response parsing by @sarroutbi in #1090
- Add 6 alphanumeric lowercase X-Request-ID header by @sarroutbi in #1092
- Add state to avoid exiting on wrong attestation by @sarroutbi in #1093
- Add Mermaid FSM chart by @sarroutbi in #1095
- Add authentication module implementing the challenge-response protocol by @sergio-correia in #1094
- config: Use the singleton pattern to avoid reading the files multiple times by @ansasaki in #1082
- build(deps): bump anyhow from 1.0.98 to 1.0.99 by @dependabot[bot] in #1091
- rpm: Fix patches to apply to current master code by @ansasaki in #1096
- build(deps): bump thiserror from 2.0.12 to 2.0.16 by @dependabot[bot] in #1086
- build(deps): bump tempfile from 3.20.0 to 3.21.0 by @dependabot[bot] in #1085
- build(deps): bump syn from 2.0.90 to 2.0.106 by @dependabot[bot] in #1084
- build(deps): bump pest_derive from 2.8.0 to 2.8.1 by @dependabot[bot] in #1089
- build(deps): bump serde_json from 1.0.140 to 1.0.143 by @dependabot[bot] in #1101
- build(deps): bump wiremock from 0.6.3 to 0.6.4 by @dependabot[bot] in #1100
- Add policy to handle Retry-After response headers by @sarroutbi in #1097
- rpm: Do not remove wiremock which is now available in Fedora by @ansasaki in #1110
- FSM: Fix compilation warnings detected by clippy by @sarroutbi in #1105
- config: Fix singleton tests by @ansasaki in #1112
- CI: Enable test add-agent-with-malformed-ek-cert by @kkaarreell in #1109
- workflows: Add test to check if RPM patches still apply by @ansasaki in #1111
- Accept evidence handling structures null entries by @sarroutbi in #1116
- build(deps): bump trybuild from 1.0.105 to 1.0.110 by @dependabot[bot] in #1099
- build(deps): bump async-trait from 0.1.88 to 0.1.89 by @dependabot[bot] in #1098
- build(deps): bump actix-rt from 2.10.0 to 2.11.0 by @dependabot[bot] in #1117
- build(deps): bump cfg-if from 1.0.1 to 1.0.3 by @dependabot[bot] in #1115
- build(deps): bump log from 0.4.27 to 0.4.28 by @dependabot[bot] in #1120
- build(deps): bump http from 1.1.0 to 1.3.1 by @dependabot[bot] in #1121
- Ensure UEFI log capabilities are set to false by @sarroutbi in #1123
- docker: update rust to 1.81 for distroless Dockerfile by @cinghioGithub in #1124
- Use separate keys for payload mechanism and mTLS by @ansasaki in #1129
- Implement minimal RFC compliance for Location header and URI parsing by @sarroutbi in #1125
- Improve logging coherency and consistency across Keylime codebase by @sarroutbi in #1128
- Fix ECC algorithm selection and reporting for keylime agent by @sergio-correia in #1132
- build(deps): bump uuid from 1.17.0 to 1.18.1 by @dependabot[bot] in #1113
- Use more strict patching in Copr build test workflow by @ansasaki in #1133
- Remove disabled_signing_algorithms configuration by @sarroutbi in #1137
- Fix RSA2048 algorithm reporting in keylime agent by @sergio-correia in #1134
- tests: Enable more TPM tests in CI by @kkaarreell in #1138
- Use simple algorithm specifiers in certification_keys object by @sergio-correia in #1140
- Persist the payload key to avoid failing attestation on restart by @ansasaki in #1141
- Include attestation_interval configuration by @sarroutbi in #1146
- docker: Include keylime_push_model_agent binary by @kkaarreell in #1148
- Integrate authentication middleware into ResilientClient by @sergio-correia in #1108
- ci: update spec files for packit COPR build by @sergio-correia in #1152
- build(deps): bump actions/checkout from 5 to 6 by @dependabot[bot] in #1153
- Add minor README.md rephrasing by @sarroutbi in #1151
- Fix agent handling of 403 Forbidden registration responses by @sarroutbi in #1154
- Add TLS support for Registrar communication by @sarroutbi in #1139
- Add verifier_url to reference configuration file by @sarroutbi in #1158
- Set correct default Verifier port by @sarroutbi in #1159
- Remove confusing logs by @sarroutbi in #1160
- docs: add documentation on FQDN hostnames by @tuminoid in #1150
- Add privilege dropping for push model agent by @sergio-correia in #1162
- build(deps): bump actions/upload-artifact from 4 to 6 by @dependabot[bot] in #1163
- build(deps): bump tempfile from 3.21.0 to 3.23.0 by @dependabot[bot] in #1131
- Reliability improvements for the Keylime agent by @sergio-correia in #1164
- packit: Get coverage from Fedora 43 runs by @ansasaki in #1166
- build(deps): bump chrono from 0.4.41 to 0.4.42 by @dependabot[bot] in #1118
- build(deps): bump actions/checkout from 5 to 6 by @dependabot[bot] in #1156
- build(deps): bump wiremock from 0.6.4 to 0.6.5 by @dependabot[bot] in #1172
- resilient_client: Prevent authentication token leakage in logs by @ansasaki in #1171
- Send UEFI measured boot logs as raw bytes by @sarroutbi in #1173
- workflows: Separate upstream test suite from e2e coverage by @ansasaki in #1175
- build(deps): bump thiserror from 2.0.16 to 2.0.17 by @dependabot[bot] in #1174
- fix(push-model): resolve hash_ek uuid to actual EK hash by @tuminoid in #1176
- rpm: Fix cargo_build macro usage on CentOS Stream by @ansasaki in #1177
- Update reqwest-retry to 0.8, retry-policies to 0.5 by @musicinmybrain in #1165
- build(deps): bump uuid from 1.18.1 to 1.19.0 by @dependabot[bot] in h...
Contributors
tuminoid, sarroutbi, and 6 other contributors
Assets 2
v0.2.8
What's Changed
- dist: Enable logging for keylime library in the service by @ansasaki in #922
- build(deps): bump tokio from 1.42.0 to 1.43.0 by @dependabot[bot] in #913
- build(deps): bump openssl from 0.10.68 to 0.10.70 by @dependabot[bot] in #926
- scripts: Fix coverage information downloading script by @ansasaki in #934
- Allow agent to start without root privileges by @sgebauer in #935
- build(deps): bump tempfile from 3.14.0 to 3.17.1 by @dependabot[bot] in #938
- build(deps): bump thiserror from 2.0.9 to 2.0.11 by @dependabot[bot] in #906
- build(deps): bump serde_json from 1.0.135 to 1.0.138 by @dependabot[bot] in #924
- build(deps): bump uuid from 1.11.0 to 1.13.2 by @dependabot[bot] in #937
- packit: Add compatibility/api_version_compatibility test by @ansasaki in #948
- Add capabilities_negotiation structures by @sarroutbi in #945
- build(deps): bump uuid from 1.13.2 to 1.15.1 by @dependabot[bot] in #950
- build(deps): bump openssl from 0.10.70 to 0.10.71 by @dependabot[bot] in #940
- keylime-agent.conf: only mention ecdsa and rsassa for signing by @THS-on in #952
- packit: Add identifier for each copr_build job by @ansasaki in #943
- build(deps): bump serde_json from 1.0.138 to 1.0.140 by @dependabot[bot] in #954
- Update push model structures to latest values by @sarroutbi in #961
- Recover key_class field and set it as "asymmetric" by @sarroutbi in #966
- Add support for ek certificate chain (stored in TPM NVRAM), resolves #1552 by @ematery in #951
- Push model prototype by @sarroutbi in #964
- Code refactoring: Include AgentIdentity by @sarroutbi in #925
- build(deps): bump tokio from 1.43.0 to 1.44.2 by @dependabot[bot] in #973
- Move SymmKey from common to the keylime library by @ansasaki in #975
- build(deps): bump openssl from 0.10.71 to 0.10.72 by @dependabot[bot] in #972
- Move AuthTag and EncryptedData from the common.rs to the Keylime library by @ansasaki in #976
- Do not use certificate on insecure mode by @sarroutbi in #980
- Add logging to the push attestation prototype by @ansasaki in #981
- Cargo: bump url crate to version 2.5.4 by @ansasaki in #982
- Add client certificates to push-attestation prototype by @ansasaki in #984
- Add mockoon test scenario by @sarroutbi in #979
- Define EvidenceHandling structures by @sarroutbi in #971
- Fix minor README.md issue by @sarroutbi in #988
- Add auth(sessions) structures by @sergio-correia in #987
- build(deps): bump serde from 1.0.217 to 1.0.219 by @dependabot[bot] in #955
- build(deps): bump reqwest from 0.12.12 to 0.12.15 by @dependabot[bot] in #960
- build(deps): bump actix-web from 4.9.0 to 4.10.2 by @dependabot[bot] in #958
- build(deps): bump assert_cmd from 2.0.16 to 2.0.17 by @dependabot[bot] in #992
- build(deps): bump log from 0.4.25 to 0.4.27 by @dependabot[bot] in #991
- build(deps): bump signal-hook from 0.3.17 to 0.3.18 by @dependabot[bot] in #993
- build(deps): bump thiserror from 2.0.11 to 2.0.12 by @dependabot[bot] in #995
- build(deps): bump uuid from 1.15.1 to 1.16.0 by @dependabot[bot] in #994
- Integrate Evidence Handling/Authentication messages to push attestation prototype by @sarroutbi in #990
- build(deps): bump libc from 0.2.169 to 0.2.172 by @dependabot[bot] in #996
- build(deps): bump pest from 2.7.15 to 2.8.0 by @dependabot[bot] in #998
- build(deps): bump pest_derive from 2.7.15 to 2.8.0 by @dependabot[bot] in #1000
- Move structure filling and URL selection related code to specific modules by @sarroutbi in #999
- Refactor code: move error and registration to lib by @sarroutbi in #1004
- build(deps): bump tempfile from 3.17.1 to 3.20.0 by @dependabot[bot] in #1003
- build(deps): bump chrono from 0.4.40 to 0.4.41 by @dependabot[bot] in #1001
- build(deps): bump tokio from 1.44.2 to 1.45.0 by @dependabot[bot] in #1006
- Add registration for Push Model client by @sarroutbi in #1005
- build(deps): bump clap from 4.5.23 to 4.5.38 by @dependabot[bot] in #989
- Avoid duplicated call to ctx.create_ek by @sarroutbi in #1010
- Enable different key sizes and curves for EK and AK by @THS-on in #846
- Remove configuration file trailing whitespaces by @sarroutbi in #1012
- Add Quote related structures to Keylime library by @sarroutbi in #1013
- Unify Push Model structures time formats to UTC by @sarroutbi in #1016
- build(deps): bump tokio from 1.45.0 to 1.45.1 by @dependabot[bot] in #1008
- build(deps): bump clap from 4.5.38 to 4.5.39 by @dependabot[bot] in #1011
- Move Agent identity information from the
RegistrarClientstructure to the new structure AgentIdentity by @ansasaki in #1017 - build(deps): bump uuid from 1.16.0 to 1.17.0 by @dependabot[bot] in #1007
- build(deps): bump wiremock from 0.6.2 to 0.6.3 by @dependabot[bot] in #977
- Extract Capabilities Negotiation info from TPM by @sarroutbi in #1014
- Move reusable code from
keylime-agentto thekeylimelibrary by @ansasaki in #1018 - build(deps): bump once_cell from 1.19.0 to 1.21.3 by @dependabot[bot] in #1019
- Push Model: Add IMA log parser to send correct entry count by @sarroutbi in #1026
- Add UEFI log handler, use it to send UEFI count by @sarroutbi in #1022
- Fix race conditions in tests by @ansasaki in #1028
- tests: Do not assume
/var/lib/keylimeexists by @ansasaki in #1030 - Use singleton to avoid multiple Context allocation by @sarroutbi in #1029
- Add Keylime push model binary to root GNUmakefile by @sarroutbi in #1031
- Push Model: Persist Attestation Key to file by @sarroutbi in #1032
- Send correct 'key_algorithm' in certification_keys by @sarroutbi in #1035
- Send Content-Type:application/json on request by @sarroutbi in #1039
- Fix pcr_bank function to send all slots by @sarroutbi in #1036
- config: Unify configuration for pull and push agents by @ansasaki in #1037
- Add disallowed_signing_algorithms, avoid ecschnorr by @sarroutbi in #1034
- Push Model: Perform attestation (quote, uefi and ima logs) by @sarroutbi in #1038
- Fix clippy warnings about uninlined format arguments by @ansasaki in #1042
- context_info_handler: Do not assume /var/lib/keylime exists by @ansasaki in #1044
- Fix UEFI test to check file access in all cases by @sarroutbi in #1045
- Add Capabilities Negotiations resp. missing fields by @sarroutbi in #1046
- Increase coverage in evidence handling structure by @sarroutbi in https://github.com/...
Contributors
sarroutbi, sgebauer, and 5 other contributors
Assets 2
v0.2.7
What's Changed
- Fix clippy warnings by @ansasaki in #804
- ci: use CODECOV_TOKEN when submitting coverage data by @kkaarreell in #812
- ci: Disable Packit CI on CentOS Stream 9 by @kkaarreell in #813
- dependabot: Extend to also monitor workflow actions by @ansasaki in #816
- build(deps): bump serde_json from 1.0.116 to 1.0.120 by @dependabot in #808
- build(deps): bump thiserror from 1.0.59 to 1.0.63 by @dependabot in #815
- keylime/crypto: Fix indentation of documentation comment by @ansasaki in #823
- build(deps): bump openssl from 0.10.64 to 0.10.66 by @dependabot in #817
- build(deps): bump uuid from 1.7.0 to 1.10.0 by @dependabot in #822
- Enable test functional/iak-idevid-persisted-and-protected by @Isaac-Matthews in #814
- tests: apply workarounds to known bugs by @kkaarreell in #836
- build(deps): bump docker/build-push-action from 5 to 6 by @dependabot in #818
- tests: Add more tests to Packit CI by @kkaarreell in #844
- build(deps): bump serde from 1.0.203 to 1.0.210 by @dependabot in #840
- cargo: Bump reqwest to version 0.12.7 by @ansasaki in #851
- build(deps): bump futures from 0.3.27 to 0.3.31 by @dependabot in #852
- tpm: check if EK certificate has valid ASN.1 DER encoding by @THS-on in #845
- build(deps): bump serde_json from 1.0.120 to 1.0.128 by @dependabot in #850
- build(deps): bump log from 0.4.21 to 0.4.22 by @dependabot in #857
- config: Refactor
AgentConfigSourcetrait implementation by @ansasaki in #856 - build(deps): bump actix-rt from 2.9.0 to 2.10.0 by @dependabot in #858
- Fix showing wrong UUID, remove unused library by @UntriexTv in #862
- Use ${DESTDIR} for config by @Itxaka in #864
- Make the API configuration modular by @ansasaki in #861
- tests: Use Fedora 41 to generate code coverage by @ansasaki in #873
- workflows: Submit the coverage for merged PR from Fedora 41 by @ansasaki in #874
- build(deps): bump codecov/codecov-action from 4 to 5 by @dependabot in #868
- build(deps): bump pest from 2.7.6 to 2.7.14 by @dependabot in #854
- build(deps): bump pest_derive from 2.7.6 to 2.7.14 by @dependabot in #855
- build(deps): bump tempfile from 3.10.1 to 3.14.0 by @dependabot in #869
- build(deps): bump clap from 4.3.11 to 4.5.21 by @dependabot in #867
- config: Enable passing a hostname instead of IP by @ansasaki in #866
- Use a single TPM context and avoid race conditions during tests by @ansasaki in #870
- build(deps): bump reqwest from 0.12.7 to 0.12.9 by @dependabot in #879
- build(deps): bump actix-web from 4.5.1 to 4.9.0 by @dependabot in #878
- build(deps): bump serde_json from 1.0.128 to 1.0.133 by @dependabot in #877
- build(deps): bump uuid from 1.10.0 to 1.11.0 by @dependabot in #876
- build(deps): bump openssl from 0.10.66 to 0.10.68 by @dependabot in #881
- tests: Add script to generate IAK and IDevID certificates by @ansasaki in #883
- Move IAK and IDevID code to a dedicated module by @ansasaki in #886
- build(deps): bump libc from 0.2.167 to 0.2.168 by @dependabot in #887
- build(deps): bump pest from 2.7.14 to 2.7.15 by @dependabot in #885
- build(deps): bump pest_derive from 2.7.14 to 2.7.15 by @dependabot in #893
- build(deps): bump serde from 1.0.210 to 1.0.217 by @dependabot in #894
- Support multiple API versions by @ansasaki in #889
- build(deps): bump glob from 0.3.1 to 0.3.2 by @dependabot in #895
- build(deps): bump libc from 0.2.168 to 0.2.169 by @dependabot in #890
- cargo: Update reqwest to version 0.12.12 by @ansasaki in #900
- cargo: Bump thiserror crate to version 0.2.9 by @ansasaki in #901
- packit: Fix RPM builds on copr by @ansasaki in #908
- cargo: Bump tokio crate to version 1.42.0 by @ansasaki in #904
- build(deps): bump serde_json from 1.0.133 to 1.0.135 by @dependabot in #896
- build(deps): bump log from 0.4.22 to 0.4.25 by @dependabot in #907
- cargo: Bump base64 crate to version 0.22.1 by @ansasaki in #902
- cargo: Bump clap crate to version 4.5.23 by @ansasaki in #903
- scripts: Fix regex in download_packit_coverage.sh by @ansasaki in #916
- cargo: Bump pretty_env_logger to version 0.5.0 by @ansasaki in #915
- main: Remove unnecessary lifetime by @ansasaki in #917
- scripts: Download coverage data from Testing Farm directly by @ansasaki in #918
- Bump version to 0.2.7 by @ansasaki in #914
New Contributors
- @UntriexTv made their first contribution in #862
- @Itxaka made their first contribution in #864
Full Changelog: v0.2.6...v0.2.7
Contributors
Itxaka, THS-on, and 5 other contributors
Assets 2
v0.2.6
What's Changed
- Build COPR RPMs for centos-stream-10 by @kkaarreell in #782
- rpm: fix COPR RPMs build for centos-stream-10 by @ansasaki in #784
- fix IAK SHA512 template to match IDevID by @Isaac-Matthews in #786
- Fix 'unnecessary qualification' warnings by @ansasaki in #789
- Fix leftover 'unnecessary qualification' warnings on tests by @ansasaki in #793
- Adding /agent/info API to agent by @mpeters in #758
- Add the ability to use persistent handles for IDevID and IAK rather than regenerating, and add auth values for them by @Isaac-Matthews in #785
- config: Support hostnames in registrar_ip option by @ansasaki in #797
- rpm/fedora: Update rust macro usage by @ansasaki in #799
- build(deps): bump serde from 1.0.196 to 1.0.203 by @dependabot in #796
- build(deps): bump libc from 0.2.153 to 0.2.155 by @dependabot in #792
- Bump version to 0.2.6 by @ansasaki in #801
Full Changelog: v0.2.5...v0.2.6
Contributors
mpeters, kkaarreell, and 3 other contributors
Assets 2
v0.2.5
What's Changed
- config: disable IAK/IDevID by default when no configuration is found by @ansasaki in #731
- build(deps): bump reqwest from 0.11.23 to 0.11.24 by @dependabot in #728
- build(deps): bump libc from 0.2.152 to 0.2.153 by @dependabot in #727
- build(deps): bump serde from 1.0.195 to 1.0.196 by @dependabot in #724
- cargo: Bump ahash to version 0.8.7 by @ansasaki in #741
- cargo: Replace compress-tools with zip crate by @ansasaki in #739
- typo fix for default path to measured boot log file by @galmasi in #743
- crypto: Improve error handling and move to library by @ansasaki in #736
- Fix minor typo, format and remove end white spaces by @sarroutbi in #748
- crypto: Add support for ECC key pair generation by @ansasaki in #747
- Include newest Node20 versions for Github actions by @sarroutbi in #754
- Set X509 SAN with local DNSname/IP/IPv6 by @sarroutbi in #744
- cargo: Add testing feature to keylime library by @ansasaki in #749
- tests: Fix coverage download by supporting arbitrary URL by @kkaarreell in #764
- config: Support IPv6 with or without brackets by @ansasaki in #765
- Enable hex values to be used for tpm_ownerpassword by @Isaac-Matthews in #769
- build(deps): bump mio from 0.8.4 to 0.8.11 by @dependabot in #757
- build(deps): bump tempfile from 3.9.0 to 3.10.1 by @dependabot in #752
- crypto: Enable TLS 1.3 by @ansasaki in #761
- build(deps): bump actix-web from 4.4.1 to 4.5.1 by @dependabot in #732
- build(deps): bump serde_json from 1.0.107 to 1.0.116 by @dependabot in #772
- build(deps): bump h2 from 0.3.24 to 0.3.26 by @dependabot in #771
- build(deps): bump openssl from 0.10.63 to 0.10.64 by @dependabot in #774
- build(deps): bump thiserror from 1.0.56 to 1.0.59 by @dependabot in #775
- build(deps): bump log from 0.4.20 to 0.4.21 by @dependabot in #776
- Bump version to 0.2.5 by @ansasaki in #768
Full Changelog: v0.2.4...v0.2.5
Contributors
sarroutbi, galmasi, and 4 other contributors
Assets 2
v0.2.4
What's Changed
- build(deps): bump actix-rt from 2.8.0 to 2.9.0 by @dependabot in #684
- packit: Bump Fedora version used for code coverage by @ansasaki in #703
- build(deps): bump openssl from 0.10.57 to 0.10.62 by @dependabot in #694
- Make use of workspace dependencies by @ueno in #692
- build(deps): bump thiserror from 1.0.48 to 1.0.56 by @dependabot in #699
- build(deps): bump wiremock from 0.5.18 to 0.5.22 by @dependabot in #688
- Detect IDevID/IAK template from certificates by @Isaac-Matthews in #689
- tpm: Overhaul errors by @ansasaki in #711
- workflows: Fix keylime-bot token usage by @ansasaki in #713
- cargo: Bump tss-esapi to version 7.4.0 by @ansasaki in #708
- build(deps): bump shlex from 1.1.0 to 1.3.0 by @dependabot in #712
- build(deps): bump h2 from 0.3.17 to 0.3.24 by @dependabot in #710
- build(deps): bump reqwest from 0.11.22 to 0.11.23 by @dependabot in #705
- build(deps): bump actix-web from 4.4.0 to 4.4.1 by @dependabot in #704
- build(deps): bump pest from 2.7.0 to 2.7.6 by @dependabot in #700
- build(deps): bump tempfile from 3.8.0 to 3.9.0 by @dependabot in #717
- build(deps): bump base64 from 0.21.4 to 0.21.7 by @dependabot in #716
- build(deps): bump config from 0.13.3 to 0.13.4 by @dependabot in #715
- build(deps): bump openssl from 0.10.62 to 0.10.63 by @dependabot in #714
- build(deps): bump pest_derive from 2.7.0 to 2.7.6 by @dependabot in #718
- build(deps): bump serde from 1.0.188 to 1.0.195 by @dependabot in #719
- workflows: Update checkout action to version 4 by @ansasaki in #725
- Adding "mutable log paths" feature by @galmasi in #665
- build(deps): bump uuid from 1.4.1 to 1.7.0 by @dependabot in #723
- Bump version to 0.2.4 by @ansasaki in #726
New Contributors
Full Changelog: v0.2.3...v0.2.4
Contributors
ueno, galmasi, and 3 other contributors
Assets 2
v0.2.3
What's Changed
- README: update requirements by @ansasaki in #624
- Build container image and push to quay.io by @ansasaki in #633
- Update container build workflow actions by @ansasaki in #634
- Use "currently" for swtpm emulator warning by @sarroutbi in #632
- docker: Add 'keylime' system user by @ansasaki in #635
- Use latest versions of checkout/upload-artifacts by @sarroutbi in #641
- README: update dependencies for Debian and Ubuntu by @THS-on in #646
- Add workflow to run cargo-audit security audit by @ansasaki in #647
- Do not use too specific version on cargo audit workflow by @ansasaki in #651
- build(deps): bump reqwest from 0.11.16 to 0.11.20 by @dependabot in #645
- build(deps): bump log from 0.4.17 to 0.4.20 by @dependabot in #638
- build(deps): bump uuid from 1.3.1 to 1.4.1 by @dependabot in #625
- Initial PR to add support for IDevID and IAK by @Isaac-Matthews in #608
- Remove private_in_public by @sarroutbi in #656
- build(deps): bump thiserror from 1.0.40 to 1.0.48 by @dependabot in #655
- build(deps): bump actix-web from 4.3.1 to 4.4.0 by @dependabot in #653
- build(deps): bump signal-hook from 0.3.15 to 0.3.17 by @dependabot in #654
- tests: Fix tarpaulin issues with dropped -v option by @ansasaki in #663
- cargo: Bump serde to version 1.0.188 by @ansasaki in #662
- build(deps): bump openssl from 0.10.55 to 0.10.57 by @dependabot in #664
- build(deps): bump serde_json from 1.0.96 to 1.0.107 by @dependabot in #666
- build(deps): bump base64 from 0.21.0 to 0.21.4 by @dependabot in #660
- build(deps): bump tempfile from 3.6.0 to 3.8.0 by @dependabot in #668
- build(deps): bump rustix from 0.37.11 to 0.37.25 by @dependabot in #674
- Add certificates and certificate checking for IDevID and IAK keys by @Isaac-Matthews in #669
- Update packit plan with new tests by @Koncpa in #679
- Enable test functional/iak-idevid-register-with-certificates by @Isaac-Matthews in #678
- Bump configuration version and fix enable_iak_idevid by @ansasaki in #682
- build(deps): bump reqwest from 0.11.20 to 0.11.22 by @dependabot in #670
- Bump version to 0.2.3 by @ansasaki in #683
New Contributors
- @sarroutbi made their first contribution in #632
- @Isaac-Matthews made their first contribution in #608
Full Changelog: v0.2.2...v0.2.3
Contributors
sarroutbi, THS-on, and 4 other contributors
Assets 2
v0.2.2
What's Changed
- [tests] Simply coverage file URL parsing by @kkaarreell in #592
- [tests] Update test coverage task name regexp by @kkaarreell in #593
- docker/fedora/keylime_rust.Dockerfile: add the logic of cloning and compiling rust-keylime by @hustliyilin in #584
- keylime-agent/src: update API version to 2.1 to consistent with https//github.com/keylime/keylime/blob/master/docs/rest_apis.rst by @hustliyilin in #588
- rpm: Remove unused directory and add dependency for mount by @ansasaki in #598
- Remove MOUNT_SECURE bool by @Koncpa in #595
- [packit] Do not let COPR project expire by @kkaarreell in #600
- Add secure mount sanity test to packit testing by @Koncpa in #602
- build(deps): bump openssl from 0.10.48 to 0.10.55 by @dependabot in #605
- Parse lists from configuration file by @ansasaki in #604
- cargo: Bump proc-macro2 crate version by @ansasaki in #609
- main: Gracefully shutdown on SIGTERM or SIGINT by @ansasaki in #613
- Add an example of IMA policy by @aplanas in #536
- cargo: Bump tokio crate version to 1.28.2 by @ansasaki in #610
- Bump clap to version 4.3.11 by @ansasaki in #614
- hash: add more configurable hash algorithm for public key digest by @dongx1x in #611
- Adding release Dockerfiles by @mheese in #601
- build(deps): bump libc from 0.2.142 to 0.2.147 by @dependabot in #615
- cargo: Bump serde to version 1.0.166 by @ansasaki in #617
- Removing SIGINT stop signals from Dockerfiles and systemd service by @mheese in #620
- build(deps): bump tempfile from 3.5.0 to 3.6.0 by @dependabot in #621
- Bump version to 0.2.2 by @ansasaki in #619
New Contributors
Full Changelog: v0.2.1...v0.2.2
Contributors
aplanas, mheese, and 6 other contributors
Assets 2
v0.2.1
What's Changed
- config: Skip validation of keylime_dir during tests by @ansasaki in #528
- Coverage for rust agent as github action by @Koncpa in #512
- Change number of required uploaded files by @Koncpa in #532
- Disable e2e on Rawhide due to RHBZ#2171376 by @kkaarreell in #533
- Cargo: Update tempfile to 3.4.0 version by @ansasaki in #538
- build(deps): bump tokio from 1.24.2 to 1.26.0 by @dependabot in #534
- build(deps): bump openssl from 0.10.45 to 0.10.48 by @dependabot in #539
- build(deps): bump config from 0.13.2 to 0.13.3 by @dependabot in #524
- build(deps): bump reqwest from 0.11.12 to 0.11.15 by @dependabot in #537
- build(deps): bump futures from 0.3.25 to 0.3.27 by @dependabot in #541
- build(deps): bump libc from 0.2.139 to 0.2.140 by @dependabot in #540
- build(deps): bump serde from 1.0.145 to 1.0.147 by @dependabot in #508
- build(deps): bump actix-web from 4.2.1 to 4.3.1 by @dependabot in #529
- build(deps): bump base64 from 0.13.1 to 0.21.0 by @dependabot in #543
- build(deps): bump thiserror from 1.0.38 to 1.0.40 by @dependabot in #544
- Fix typo in name of test for generating coverage by @Koncpa in #535
- build(deps): bump glob from 0.3.0 to 0.3.1 by @dependabot in #545
- build(deps): bump serde from 1.0.147 to 1.0.159 by @dependabot in #548
- build(deps): bump base64 from 0.13.1 to 0.21.0 by @dependabot in #549
- build(deps): bump actix-rt from 2.7.0 to 2.8.0 by @dependabot in #551
- build(deps): bump serde_json from 1.0.91 to 1.0.95 by @dependabot in #553
- Build Fedora packages on Copr using packit by @ansasaki in #546
- build(deps): bump wiremock from 0.5.14 to 0.5.18 by @dependabot in #550
- build(deps): bump base64 from 0.13.1 to 0.21.0 by @dependabot in #557
- Allow setting binary measured boot log path on RPM binaries by @ansasaki in #554
- build(deps): bump reqwest from 0.11.15 to 0.11.16 by @dependabot in #555
- build(deps): bump h2 from 0.3.14 to 0.3.17 by @dependabot in #561
- build(deps): bump libc from 0.2.140 to 0.2.141 by @dependabot in #556
- build(deps): bump tempfile from 3.4.0 to 3.5.0 by @dependabot in #547
- Drop unused features from dependencies by @ansasaki in #567
- build(deps): bump serde_json from 1.0.95 to 1.0.96 by @dependabot in #562
- build(deps): bump serde from 1.0.159 to 1.0.160 by @dependabot in #564
- rpm/fedora: Fix metadata patch by @ansasaki in #568
- packit: Build RPM packages on Copr for fedora-all by @ansasaki in #565
- keylime-agent/src/common.rs: remove VTPM and IMA stub variables by @hustliyilin in #571
- build(deps): bump libc from 0.2.141 to 0.2.142 by @dependabot in #569
- build(deps): bump uuid from 1.3.0 to 1.3.1 by @dependabot in #559
- build(deps): bump enumflags2 from 0.7.5 to 0.7.7 by @dependabot in #573
- Cargo: Update base64 to version 0.21 by @ansasaki in #575
- Bump version to 0.2.1 by @ansasaki in #578
New Contributors
- @hustliyilin made their first contribution in #571
Full Changelog: v0.2.0...v0.2.1
Contributors
hustliyilin, kkaarreell, and 3 other contributors
Assets 2
v0.2.0
What's Changed
- Cargo.toml: tss-esapi bindings by @aplanas in #459
- Use cargo tarpaulin with the --all-features flag by @avery-blanchard in #460
- Increase unit testing by @avery-blanchard in #464
- README: mark Rust agent as the offical one, fix cargo run command by @THS-on in #466
- Cargo: Drop unused dependencies rust-ini and toml by @ansasaki in #471
- systemd: start agent after network is online by @THS-on in #487
- Enabling more e2e tests in Packit CI by @kkaarreell in #476
- main: only read uuid from KeylimeConfig by @THS-on in #486
- Split crates into library and applications by @ueno in #481
- add support for cargo deb by @THS-on in #484
- CI tests: Do not remove Fedora tag repository by @kkaarreell in #488
- Disable dnf-makecache.service to save RAM by @kkaarreell in #475
- build(deps): bump tokio from 1.21.1 to 1.23.0 by @dependabot in #483
- build(deps): bump openssl from 0.10.41 to 0.10.45 by @dependabot in #493
- build(deps): bump tokio from 1.23.0 to 1.24.2 by @dependabot in #503
- keylime-agent: remove const_err deny by @aplanas in #501
- packit-ci: Add hotfix for tpm2-tss Fedora BZ#2158598 by @kkaarreell in #504
- Cargo.toml: tss-esapi bindings by @aplanas in #502
- build(deps): bump futures from 0.3.24 to 0.3.25 by @dependabot in #496
- build(deps): bump bumpalo from 3.11.0 to 3.12.0 by @dependabot in #505
- build(deps): bump libc from 0.2.133 to 0.2.139 by @dependabot in #494
- build(deps): bump serde_json from 1.0.85 to 1.0.91 by @dependabot in #491
- build(deps): bump base64 from 0.13.0 to 0.13.1 by @dependabot in #495
- crypto, mTLS: allow certificate chain for trusted_client_ca by @THS-on in #511
- Remove unused option "openstack" for obtaining uuid by @Koncpa in #498
- Refactor async code synchronization by @ansasaki in #499
- e2e tests: Fix test name by @kkaarreell in #516
- Add missing e2e tests and reordering tests based on alphabetical order by @Koncpa in #518
- config: Fix overriding options with env vars by @ansasaki in #514
- build(deps): bump thiserror from 1.0.36 to 1.0.38 by @dependabot in #492
- cargo deb: include shim.py in packaging by @THS-on in #517
- build(deps): bump tss-esapi from 7.1.0 to 7.2.0 by @dependabot in #519
- Update tokio, uuid, and clap minimum versions by @ansasaki in #520
- Deprecate
with-zmqandlegacy-python-actionsfeatures by @ansasaki in #521 - packit: Re-enable tests on Fedora Rawhide by @ansasaki in #523
- Update tss-esapi in Cargo.toml by @aplanas in #522
- ima-emulator: Implement graceful shutdown by @ansasaki in #525
- packit: Remove workaround for Fedora BZ#2158598 by @ansasaki in #527
- Bump version to 0.2.0 by @ansasaki in #526
New Contributors
- @dependabot made their first contribution in #483
Full Changelog: v0.1.0...v0.2.0
Contributors
ueno, aplanas, and 6 other contributors