Skip to content

KeepKey Firmware v7.14.1

Latest
Latest

Choose a tag to compare

View all tags
@BitHighlander BitHighlander released this 05 Jun 03:17
· 1 commit to master since this release
v7.14.1
This tag was signed with the committer’s verified signature.
BitHighlander Highlander
GPG key ID: 9E2FF33FBC59937A
Verified
Learn about vigilant mode.
5482e73
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Verification

Source commit: 5482e7366a36e81336074f53a9defb6cff45ed72 (tag v7.14.1, on develop)

To verify this release

git clone https://github.com/keepkey/keepkey-firmware
cd keepkey-firmware
git checkout v7.14.1
git submodule update --init --recursive
./scripts/build/docker/device/release.sh
tail -c +257 bin/firmware.keepkey.bin | shasum -a 256

Expected hash: e0c05185e7e3274bd256108a7f35e155c4fc3f70f6f6d928a805d9f201bebf47

See https://keepkey.com/blog/verifying_keepkey_firmware for full verification workflow.

Note: The build embeds git describe output in the firmware binary, so verification must check out the tag (which points to 5482e73).

The attached binary is signed by firmware key slots 1, 2, 3 (3-of-5).

What's new

  • Solana — SignOffchainMessage with domain-separated envelope
  • TON — Ed25519 SignMessage (AdvancedMode-gated)
  • Tron — TIP-712 SignTypedHash, TIP-191 SignMessage + VerifyMessage
  • Emulator — libkkemu shared library + native macOS build
  • fix(tron): drop bogus has_signature/has_address on TronTypedDataSignature
  • fix: replace volatile+__sync_synchronize with C11 atomics in ringbuf
  • Security hardening across signature validation and message handling
Assets 4
Loading