-
Notifications
You must be signed in to change notification settings - Fork 712
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Towards new release 0.21.0 #2061
Comments
I would like to see the first one fixed, but we did not hear from anyone able to reproduce the issue for months. I saw some crashes with Firefox myself (with 0.20.0), but I never got any usable backtrace. Since 0.20.0 there were several fixes. Since I switched to locally built opensc master, I never saw the crash regardless what I did. For OSX installation process, I do not think I can help much with the OSX issue. |
With #1999 the fear I have is someone else will build and release a modified version of OpenSC as it appears @open-eid has done, and Firefox will block all versions of OpenSC "onepin-opensc-pkcs11.dll" because the modified version fails. Could we in addition to distributing a "onepin-opensc-pkcs11.dll" can we distribute GNU LESSER GENERAL PUBLIC LICENSE Version 2.1, February 1999, says: We need to protect our "original author's reputation". |
We distributed official opensc binary and codesigned. And when we change something then we alter version numbers to identify binaries from official release. |
We did some testing with #2032 and will release to wider audience. |
Could you provide ARM/ARM64 builds for Windows in your release downloads? The 32bit emulation on Windows 10 ARM isn't quite up to par yet. |
@wandtke if you manage to integrate this into the CI/build scripts and volunteer for testing, then we're good to go. Otherwise, I don't think I'll have the time to look at this right now. |
@Jakuje, could you have a look at https://oss-fuzz.com/testcase-detail/6578720056541184 ? |
@frankmorgner I was attempting to compile it myself following the instructions from the wiki using nmake, however, it kept giving me fatal errors. I would be happy to test it though. |
This should be handled by #2086 -- I would like to go through the rest of them next week, if containers will work for me. |
Could you create a release candidate? We want to roll out an update internally and need an official build for doing that. |
Hope it will be in time for Fedora 33 :) |
We'll release a RC in the next few days. Unfortunately, we did not yet find a solution for (automatically) generating a suitable installer for macOS, so this will not be available for now. |
@frankmorgner What is the problem? Is there a ticket? Can I help? |
I don't have (and want to get) a paid developer account from apple for signing packages and allowing the notification of the app. Preferably, I'd like to integrate signing credentials from someone (else) associated with the project into CI to automate this task... |
Hi @jmastr , thanks for your help, please contact me via [email protected], thanks |
The release candidate is available here: https://github.com/OpenSC/OpenSC/releases/tag/0.21.0-rc1 |
@frankmorgner, Tested several PIV devices against Master (2 commits ahead of 0.21.0-rc1) with pkcs11-tool. Are you going to add a Test Results for 0.21.0-rc-1 to https://github.com/OpenSC/OpenSC/wiki/Smart-Card-Release-Testing ? If you do can you add PIV full_moon for PKCS11 and | PIV-II | NIST PIV Demo cards, | PivApplet (JCardSim) is tested via travis-c so it could be added too. |
This comment has been minimized.
This comment has been minimized.
I did a quick test of IAS-ECC with Cosmo v8 cards on Linux, and it seems to be working fine. But I miss the following from the change list. IAS-ECC:
|
Thanks. Added to the description. If you would happen to have at least pull request IDs so we can link them from the release notes, it would be great. |
The main pull request for the listed changes was #2070. If you want to link to it, I assume its should be linked directly from the IAS-ECC header (above the list bullets). The IAS-ECC changes also required supporting changes in other code, in the following pull requests. I'm not sure where- or if these need to be mentioned: |
Tested my bunch of cards on Linux:
I ran just the tests using |
What about the MacOS package? @frankmorgner Anything else you need from me there? |
working on it... https://github.com/OpenSC/OpenSC/tree/macinst |
The current "master" branch contains several useful fixes, some distros already start backporting. Nobody cares which number you give it "release early, release often". The more we pile up the more issues we cause downstream and do not get reports about it ... One can not fix all known issues with the next release ... |
Next Debian Stable release is approaching and it would be nice to have 0.21.0 ready on time to get it integrated. What is blocking the release? |
Counter question: Has someone tested RC2? |
I understand that what is blocking the release is feedback, right? I didn't know, therefore I hadn't test it until now. Now I have tested it. I can confirm that the test Set-up:
Should I run some other tests? |
Hi, I just tested:
ECDSA (NIST256 curve)
OsEID card - lot of tests with pkcs11-tool, pkcs15-init, pkcs15-tool, pkcs15-crypt.. tested:
|
I tested:
|
I also tested:
|
Thanks @frankmorgner for the release! 🎉 |
Now let's trigger the integration on the different distros! I've taken care of Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975651 |
Gentoo already has a security issue for that, maybe no need to create a bump request ... |
Debian packaging for unstable (sid) already available! Now it means it got into the Debian promotion process, getting into "testing" (Bullseye) the upcoming days if certain requirements are fulfilled and with high probability getting into the candidate list for the upcoming "stable" release (Bullseye will get promoted from testing into stable). |
There have been talks about new release for quite some time as there have been many quite important fixes in master since 0.20.0.
I would like to kick off some testing and summarizing of changelog to get a new version out of door soon. Feel free to edit the following draft, add what I missed or propose missing issues/PRs. Let me know if there is something else where I can help towards the next release.
General Improvements
PKCS #11
MacOS
pkcs11-tool
opensc-explorer
asn1
accepts offsets and decode records (Explorer records #2090)cat
accepts records (Explorer records #2090)OpenPGP
CardOS
ePass2003
IDPrime
eDo
MCRD
TCOS
IAS-ECC (#2070):
The text was updated successfully, but these errors were encountered: