** When doing OTP verification, if a nonce is written to the AEAD file use that for decryption, not public id. ** yhsm-import-keys: add --random-nonce for using hsm generated nonce. ** yhsm-generate-keys: add --random-nonce for using hsm generated nonce.
1.0.4b
** yhsm-import-keys: Support soft HSM AEAD generation. ** yhsm-import-keys: Ignore lines starting with . ** yhsm-import-keys: Block all-zero (ccc...c) keys.
** yhsm-decrypt-keys: Support generating AEADs. ** yhsm-decrypt-keys: Ignores non-modhex files in AEAD directory trees.
** yhsm-generate-keys: Bugfix that caused AEAD generation to fail. ** yhsm-generate-keys: Bugfix that caused wrong nonce to be used. ** yhsm-generate-keys: Prevent generating all-zero (ccc...c) keys.
** Added this NEWS file, based on debian/changelog in the Debian package.
1.0.4a
** Enable IPv6 --addr for network servers. ** Verifies communication with YubiHSM on initialization.