Releases: googleapis/enterprise-certificate-proxy
Releases · googleapis/enterprise-certificate-proxy
v0.3.2 Post-GA Release
New for v0.3.2:
- Adds GetKeyType API to cshared lib
Bug Fixes:
- Removed assertion in PKCS11 lib that private key must support decryption. (Some keys only support signing, and should continue to be allowed to be used for signing only.)
Changes included from v0.3.0:
- Adds support for Encrypt and Decrypt APIs (beta):
- Only Linux (pkcs11) and Darwin (keychain) are currently supported. API is accessible through Golang universal client as well as os-specific clients.
- Only RSA is currently supported.
- Cshared library support (for integration with Python etc.) will be added in a future update.
- Adds support for overriding config location via environment variable
v0.3.1 Post-GA Release
- Adds support for Encrypt and Decrypt APIs (beta):
- Only Linux (pkcs11) and Darwin (keychain) are currently supported. API is accessible through Golang universal client as well as os-specific clients.
- Only RSA is currently supported.
- Cshared library support (for integration with Python etc.) will be added in a future update.
- Adds support for overriding config location via environment variable
v0.3.0 Post-GA Release
- Adds support for Encrypt and Decrypt APIs (beta):
- Only Linux (pkcs11) and Darwin (keychain) are currently supported. API is accessible through Golang universal client as well as os-specific clients.
- Only RSA is currently supported.
- Cshared library support (for integration with Python etc.) will be added in a future update.
- Adds support for overriding config location via environment variable
v0.2.5 Post-GA Release
- Adds linux-specific and windows-specific client to access signer APIs directly, bypassing RPC-mechanism of universal client.
- Add bounds check to PKCS #11 object arrays.
v0.2.4 Post-GA Release
- Adds darwin-specific client to access keychain APIs directly, bypassing RPC-mechanism of universal client.
- Minor update to sub-process management for Windows signer implementation - relies on OS for process clean-up instead of PID.
v0.2.3 GA Release
Fixes logging behavior issue introduced in 0.2.1 where Golang code paths outside of ECP were having logging suppressed when importing the Golang client.
v0.2.2 GA Release
- Added client-side error "ErrCredUnavailable" to help callers gracefully downgrade in the absence of ECP support.
Note: ECP binaries are not affected in this release.
v0.2.1 Public Preview Release
v0.2.1 Public Preview Release
- Added support to suppress logging.
- Added support for pkcs11 user pin
V0.2.0 Public Preview Release
This is the 2022 Q3 Public Preview Release.
- Updated certificate config name and schema. This change is not backwards compatible. Please see README for details.
- Security Updates. Added restriction to only support RSA keys with a minimum of 2048 bits.
v0.1.0
Initial release of enterprise certificate proxy project that includes the following:
- Darwin signer binary.
- Windows signer binary.
- Linux signer binary (beta)
- Golang signer client (cross-platform).
- C-based shared library for signer client (cross-platform). The shared library currently provides client APIs for Python.