-
Notifications
You must be signed in to change notification settings - Fork 712
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Prepare for release 0.23.0 #2426
Comments
Hello, Is there a timeline somewhere for this new version because the current one is broken when trying to compile against openssl 3.0.X. For example, I'm currently blocked on this: f214e65 But I'm sure I'll stumble on other issues after that one. |
@frankmorgner @Jakuje when do you expect to have the next release? It has been almost 5 months since this issue was created. |
@dlegaultbbry Are you compiling against a specific release or from github master. |
@dengert I'm using 0.22 currently but was doing so with openssl 1.1.1. We're moving to 3.0 which is now an official released and LTS version hence why I'm asking. |
I think we should do it before the summer so in coming months, if possible. The last release was in August (time flies) and since then we had over 400 commits in master. In https://github.com/OpenSC/OpenSC/projects/10 there are noteworthy changes around formatting and around PIV SM, which I agree that they should go in. I added also #2473 which would be great have, but I am not sure if I have enough expertise to decide the design is correct, but it looks reasonable. |
@Jakuje I agree it needs to be done, the sooner the better. I am not pushing for PIV SM to be in next release. I would rather have it committed after the next release. I don't like seeing big changes added just before a release. (But I am not doing the release and an happy with Frank and you doing it.) I would like to see #2506 and #2518 in next release. And maybe #2523 but would like @metsma and @vletoux to look at it closer as it deals with how the minidriver is installed which caused the ECC code not to work on Windows. @dlegaultbbry was specifically asking about OpenSSL 3.0 changes. I think we have most of them committed accept for #2506. |
Any eta on the release of this new version? |
I would love to get the RC out in coming weeks, rather earlier than later. I do not think there is any huge outstanding work, but just testing and possible small fixes if something will not work well. |
@OpenSC/maintainers Just published the rc1 release: https://github.com/OpenSC/OpenSC/releases/tag/0.23.0-rc1 and would be glad for testing. @frankmorgner For some reason, it looks like the macos builds are not propagated to the artifacts repo and the push_artifacts step of CI is not doing anything for me so we don't have the macos binaries. I can probably pull them from the CI artifacts, but in any case, this is something we need either to update instructions or fix the pipelines ... it looks like there is missing the GH_TOKEN. Not sure if only for me or for anyone else too. |
https://github.com/OpenSC/Nightly/tree/2022-10-11_a3b5f8d0 When downloaded to Windows 11, The Looks like a version number needs to be changed in more places. But I don't see where. win32 versions have the same issue. |
@dengert oh, the 0.22.0 builds are from the CI invoked by the push, while the 0.23.0 are from the tag. I copied to https://github.com/OpenSC/OpenSC/releases/tag/0.23.0-rc1 the old ones, even though the code should be really the same. Let me fix that. When I download the files from https://github.com/OpenSC/Nightly/archive/2022-10-11_a3b5f8d0.zip I got much larger files -- how did you download them? |
I went to https://github.com/OpenSC/Nightly/tree/2022-10-11_a3b5f8d0 at 7:10 AM (GMT-5) and downloaded: https://github.com/OpenSC/Nightly/blob/2022-10-11_a3b5f8d0/OpenSC-0.23.0-rc1_win64.msi which was 211 KB. Now at 10:13 AM I downloaded the same file and it is 16,339 KB. I must have caught it while it was being updated? That matches what is in the zip file, and it installs. |
I think the confusion about the file naming is caused by using a lightweight tag for the RC. The Release Howto explaines to use |
for macos, the installer is available for download in this job https://github.com/OpenSC/OpenSC/actions/runs/3226517878 |
Thanks. I was not sure if it was supposed to work this way or not. Just pulled the dmg from the tarball and attached it to the release. But it is missing the |
FYI, the wiki is now open for anyone to edit. I already filled my test results in https://github.com/OpenSC/OpenSC/wiki/Smart-Card-Release-Testing#opensc-0230 and would appreciate others to fill their results too (especially windows and mac installers, but also other cards). |
The windows install/uninstall was tested on Windows 11. Before the install, any previous OpenSC packages where uninstalled. NIST "Beta Test Cards" (from 2010) were used to test the minidriver.
Commands used to list and/or test include:
The main changes to minidriver were from #2523. People provided suggested fixes, but no one reported testing the PR with other cards with ECC keys. I would hope vendors such as @CardContact would test this with their devices with EC keys. To test with PIV cards:
Notes:
Registry entries for the two types of cards. The cards used may be different in other sets of "Beta" or "Demo" cards. In my set, two were Gemalto, the rest Oberthur ID-One PIV.
|
@dengert I read that it works ok for you. Can you update the release testing wiki page on https://github.com/OpenSC/OpenSC/wiki/Smart-Card-Release-Testing#opensc-0230 I did another RC today. Anyone who would like to test or provide a feedback is welcomed to do so. I would like to fix remaining fuzzing issues and do the release in coming weeks (rather earlier than later). https://github.com/OpenSC/OpenSC/releases/tag/0.23.0-rc2 |
|
Thanks. If there will be no other feedback, testing and comments nor objections, I would like to cut off and build the final release this week. |
The new version was released today. Thanks everyone for the contributions, testing and reporting issues! https://github.com/OpenSC/OpenSC/releases/tag/0.23.0 |
As proposed in note from OpenSC developers, release 0.23.0 will follow a security release 0.22.1.
The intent is to add to master, current PRs and address issues long before a release is created. By adding these early they will get additional testing by developers and users. In the past we have waited until a release candidate was announced to add last minute changes
The initial list of ToDo's include those that appear to be ready to add or need to be addressed.
Please, let me know if we missed something or if there is something which should go in before release.
@OpenSC/opensc-maintainers, @OpenSC/core, @OpenSC/maintainers,
Draft release notes (thanks Veronika!):
General improvements
PKCS#11
C_CreateObject
for EC keys and fix signature verification forCKM_ECDSA_SHAx
cards (Implement C_CreateObject for EC keys #2420)pkcs11-tool
--session-rw
option (Do not require a R/W session for --login, ... #2579)sc-hsm-tool
Minidriver
NQ-Applet
ItaCNS
Belpic
Starcos
ePass2003
MyEID
GIDS
OpenPGP
nPA
The text was updated successfully, but these errors were encountered: