| blob | 2c231e36f8376a4af3e0fff0683176bf762dde0e |
1 PWMD v2.6
2 ----------
3 Fixed a nasty bug that may have existed in all previous versions that would
4 cause a segfault do to an invalid return value from pth_exit().
6 The default keepalive is now 0 or disabled. It was added during testing of
7 remote connections over TLS and kept for use with libpwmd and SSH connections.
8 The development version of libssh2 has connection timeout support so there
9 really isn't any reason for doing keepalives in pwmd. This also fixes longer
10 running processes linked with libpwmd that keep a connection open but do not
11 parse status messages. pwmd would therefore kill the connection.
14 PWMD v2.5
15 ----------
16 New configuration parameter "allowed" to specify which users are allowed to
17 connect to the unix domain socket. The default is the invoking user only.
19 Fixed the IMPORT command to let it handle "target" attributes properly.
21 Let "disable_list_and_dump" be resetable during SIGHUP but only if not
22 permissive (TRUE).
25 PWMD v2.4
26 ----------
27 Reworked the IMPORT command to let it create root elements. The syntax has
28 changed to have the content as the first argument and the element path, if
29 any, as the remaining arguments after the content which is now TAB, rather
30 than space, separated.
32 Changed how the "target" attribute value is stored in the document. Rather
33 than storing the resolved destination argument, first check to see if the
34 element path (which may contain other target attributes) is valid then store
35 the specified path as the "target" attribute value.
37 A few bugfixes. See ChangeLog for details.
40 PWMD v2.3
41 ----------
42 The DISPLAY and TERM environment variables are unset just before entering the
43 server loop. Clients wanting to use pinentry must set these options manually
44 or configure ~/.pwmd/pinentry.conf. This fixes pwmd using these variables
45 which may no longer be valid.
47 Ported to libassuan 2.0. There is no longer a static libassuan included in the
48 archive since this version supports building a DSO.
50 Fixed the COPY command copying only the the first element of the tree. How'd
51 that happen?
54 PWMD v2.2
55 ----------
56 Bugfix for pushing non-encrypted files into the cache.
59 PWMD v2.1
60 ----------
61 A new GnuPG key is being used to sign releases and git tags. The new key-id is
62 0xB140DCE2. The old key-id 0xF2B33BEF should be considered revoked do to a
63 data loss (not pwmd's fault, though).
65 Added an "age" attribute to the document element. This attribute is updated to
66 the time of the last SAVE.
68 Added support for using different ciphers when saving a data file. This adds a
69 new configuration parameter "cipher" and also adds a new option "SET CIPHER".
70 See the manual page for supported ciphers.
72 Added a new configuration parameter "log_level".
74 Added the RENAME command to rename an element.
76 Added the COPY command to copy an element tree to an element path.
78 Always use the passphrase specified with the OPEN command, if any, even when
79 the (encrypted) file has been cached.
81 Fixed converting an unencrypted data file.
83 A few portability fixes for 64-bit machines.
85 Added configuration parameter "debug_file" to log all protocol IO to the
86 specified file.
89 PWMD v2.0
90 ----------
91 This version breaks data file compatibility with previous versions but has an
92 option to convert your existing data file to the new format. See the manual
93 page about the --convert command line switch. Future versions that have data
94 file changes shouldn't have this problem.
96 Requires a C99 compiler.
98 libassuan is included statically. There is no longer an external dependency.
100 Better handling of unexpected client disconnects and status messages.
102 Added new protocol command VERSION.
104 Added new protocol commands SET and UNSET. SET replaces the old OPTION
105 command. UNSET resets an option to its default value.
107 Pinentry is used when importing, converting and pushing files from the command
108 line. It can also be disabled to use regular terminal input.
110 The file cache is a GSList rather than a mmap()'ed page of memory. This allows
111 for an unlimited number of data files but changes the CACHE status message to
112 only show the number of cached files and not any total.
114 Removed EPWMD_MAX_SLOTS, EPWMD_ERROR and EPWMD_ELOOP.
116 Added new XFER status message. This is sent after every ASSUAN_LINELENGTH
117 bytes when tranferring data lines. This adds a new configurations parameter
118 "xfer_progress".
120 Option ACL (Access Control List) support. When --enable-acl is passed to
121 configure, data files with an ACL will be retained after a SAVE or inherited
122 from the data_directory if new.
124 The ISCACHED command now checks for file existance. Returns GPG_ERR_NOT_FOUND
125 if it exists but not found in the file cache or an errno from access(2).
127 Renamed a few SET (old OPTION command) parameters to match the rcfile
128 parameter names so GETCONFIG will work better:
129 PINENTRY -> ENABLE_PINENTRY
130 TIMEOUT -> PINENTRY_TIMEOUT
131 PATH -> PINENTRY_PATH
133 Removed the old CLIENT option. The old NAME sub-option can be set with SET
134 NAME=VALUE.
136 Changed how GETCONFIG handles per-session option changes for some options. If
137 no file is specified and the specified option was previouly SET, then the SET
138 value is returned. Else the option for the specified file is read from the
139 configuration file.
141 GETCONFIG <filename> ITERATIONS will read the file header of the specified
142 file. Useful if using a local pinentry and you need to determine if a filename
143 is encrypted or not.
145 SET ITERATIONS requires an open file.
147 The configuration parameters "pinentry_timeout" and "enable_pinentry" can now
148 be set per-file in the configuration file.
150 Can now use both short and long command line options.
152 The CACHETIMEOUT command has had its arguments flipped to keep consistancy
153 with other commands: CACHETIMEOUT <filename> <seconds>