Skip to content

v1.8.0

Latest
Latest
Compare
Choose a tag to compare
@nitrokey-ci nitrokey-ci released this 06 Dec 14:51
· 5 commits to main since this release
v1.8.0
This tag was signed with the committer’s verified signature.
robin-nitrokey Robin Krahl
GPG key ID: 34F47D2F044B8F17
Learn about vigilant mode.
8bfc4fb
This commit was signed with the committer’s verified signature.
robin-nitrokey Robin Krahl
GPG key ID: 34F47D2F044B8F17
Learn about vigilant mode.

Features

  • OpenPGP: add support for additional curves when using the se050 backend: (#524)
    • NIST P-384
    • NIST P-521
    • brainpoolp256r1
    • brainpoolp384r1
    • brainpoolp512r1
  • admin-app: Add command to list all supported config fields (admin-app#28)
  • admin-app: Add opcard.disabled configuration option to disable OpenPGP (#539)
  • piv: Add support for PIV, powered by the SE050 secure element (#534)
  • Improve external flash mounting to decrease startup time (#440)

Notes

  • This release adds a second CCID (smartcard) application, PIV. This may change the behavior of some programs like OpenSC when trying to access the existing CCID application, OpenPGP. The following workarounds are available:
    • Disable the PIV application on the Nitrokey 3 with nitropy nk3 set-config piv.disabled true.
    • Explicitly select the OpenSC application to use by setting the OPENSC_DRIVER environment variable, for example OPENSC_DRIVER=openpgp.

Known issues

  • PIV: uploading a large certificate (> 1KiB) to the device might fail. Power cycling the device and retrying often solves the issue.
Assets 14
Loading