v0.5.0

• Fix possible crash bug in pivy-box
• Support for pivy-tool set-admin random
• Applet name and URI display in pivy-tool list
• Pre-built package for Ubuntu 18.04

v0.4.0

• Update to latest LibreSSL
• Fixes for running on OpenBSD
• PAM plugin for Linux
• Support for admin-key-in-PrintedInfo-object (the method that ykman and the PIV minidriver use to store the admin key)
• Support for adding Windows UPNs to self-signed certs for AD login

v0.3.1

• pivy-agent now has -U option to allow users other than the starting UID to connect (also -Z for systems with zones)
• binaries for illumos and archlinux now uploaded

v0.3.0

• Security fix: eboxes with multiple recovery configs could have the key shares from one config used to attack another. Any affected eboxes should be regenerated with v0.3.0 or later.
• pivy-zfs rekey now generates a new wrapping key and calls lzc_change_key so that old versions of the ebox can't be used to unlock the dataset
• Using pivy-zfs unlock on a zpool root now tries to auto-mount datasets after unlocking
• Compiler warning fixes

v0.2.1

• Added -s sectorsize option to pivy-luks format
• Fixes for lots of lint issues, some minor memory leaks
• Builds on openbsd and illumos

v0.2.0

• New pivy-zfs and pivy-luks tools for directly managing keys for ZFS filesystems and LUKS encrypted devices
• Improvements to TLV parser to reduce risk of malicious cards causing crashes
• Fixes for some T=0 mode smartcards in TPDU level card readers
• Bug fixes after fuzzing file formats and APDU parsers with afl

v0.1.6

• Fix errors when no cards are present and piv-tool commands are run
• Fix memory leak during ebox unlock
• Future-extensibility features for ebox (optional fields)

v0.1.5

• Omit extra timestamps when logging to journald on Linux

v0.1.4

• New OSX binary package installer
• pivy-tool setup skips init and generate 9e if they are already present
• pivy-box recovery can retry primary configs
• ebox slotid rework