Releases: Yubico/yubikey-manager
Releases · Yubico/yubikey-manager
yubikey-manager 3.1.1
- Version 3.1.1 (released 2020-01-29)
- Add support for YubiKey 5C NFC
- OpenPGP: set-touch now performs compatibility checks before prompting for PIN
- OpenPGP: Improve error messages and documentation for set-touch
- PIV: read-object command no longer adds a trailing newline
- CLI: Hint at missing permissions when opening a device fails
- Linux: Improve error handling when pcscd is not running
- Windows: Improve how .DLL files are loaded, thanks to Marius Gabriel Mihai for reporting this!
- Bugfix: set-touch now accepts the cached-fixed option
- Bugfix: Fix crash in OtpController.prepare_upload_key() error parsing
- Bugfix: Fix crash in piv info command when a certificate slot contains an invalid certificate
- Library: PivController.read_certificate(slot) now wraps certificate parsing exceptions in new exception type InvalidCertificate
- Library: PivController.list_certificates() now returns None for slots containing invalid certificate, instead of raising an exception
Downloads available here: https://developers.yubico.com/yubikey-manager/Releases/
yubikey-manager-0.7.1
- Version 0.7.1 (released 2018-07-09)
- Support for YubiKey FIPS.
- OTP: Allow setting and removing access codes on the slots.
- Interfaces: set-lock-code now only accepts hexadecimal inputs.
- Bugfix: Don’t fail to open the YubiKey when the serial is not visible.
yubikey-manager-0.7.0
- Version 0.7.0 (released 2018-05-07)
- Support for YubiKey Preview.
- Add command to configure enabled applications over USB and NFC. See ykman config -h.
- Add command for selecting which slot to use for NDEF. See ykman otp ndef -h.
yubikey-manager-0.6.1
- Version 0.6.1 (released 2018-02-12)
- Support for YubiKeys with FIDO2. See ykman fido -h
- Report the form factor for YubiKeys that support it.
- OTP: slot command is now called otp. See ykman otp -h for all changes.
- Static password: Add support for different keyboard layouts. See ykman otp static -h
- PIV: Signatures for CSRs are now correct.
- PIV: Commands on slots with PIN policy ALWAYS no longer fail if the YubiKey has a management key protected by PIN.
- Mode: The U2F mode is now called FIDO.
- Dependencies: libu2f-host is no longer used for FIDO communication over USB, instead the python library fido2 is used.
yubikey-manager-0.6.0
Version 0.6.0 (released 2018-02-09)
- OpenPGP: Expose remaining PIN retries in info command and API.
- CCID: Only try YubiKey smart card readers by default.
- Handle NEO issues with challenge-response credentials better.
- Improve logging.
- Improve error handling when opening device over OTP.
- Bugfix: Fix adding OTP data through the interactive prompt.
yubikey-manager-0.5.0
yubikey-manager-0.5.0
This tag was signed with the committer’s verified signature.
The key has expired and has been revoked.
emlun
Emil Lundberg
d51705b
This commit was signed with the committer’s verified signature.
The key has expired and has been revoked.
emlun
Emil Lundberg
- Version 0.5.0 (released 2017-12-15)
-
API breaking changes:
- OATH: New API more similar to yubioath-android
-
CLI breaking changes:
- OATH: Touch prompt now written to stderr instead of stdout
- OATH: -a|--algorithm option to list command removed
- OATH: Columns in code command are now dymanically spaced depending on contents
- OATH: delete command now requires confirmation or -f|--force argument
- OATH: IDs printed by list command now include TOTP period if not 30
-
Changed outputs:
- INFO: "Device name" output changed to "Device type"
- PIV: "Management key is stored on device" output changed to "Management key is stored on the YubiKey"
- PIV: "All PIV data have been cleared from the device" output changed to "All PIV data have been cleared from your YubiKey"
- PIV: "The current management key is stored on the device" prompt changed to "The current management key is stored on the YubiKey"
- SLOT: "blank to use device serial" prompt changed to "blank to use YubiKey serial number"
- SLOT: "Using device serial" output changed to "Using YubiKey device serial"
-
Lots of failure case outputs changed
-
New features:
- Support for multiple devices via new top-level option -d|--device
- New top-level option -l|--log-level to enable logging
- OATH: Support for remembering passwords locally.
- OATH: New option -s|--single for code command
- PIV: set-pin-retries command now warns that PIN and PUK will be reset to factory defaults, and prints those defaults after resetting
-
API bug fixes:
- OATH: valid_from and valid_to for
Codes are now absolute instead of relative to the credential period - OATH: period for non-TOTP
Codesis nowNone
- OATH: valid_from and valid_to for
-
yubikey-manager-0.4.6
yubikey-manager-0.4.6
This tag was signed with the committer’s verified signature.
The key has expired and has been revoked.
emlun
Emil Lundberg
e8b2dea
This commit was signed with the committer’s verified signature.
The key has expired and has been revoked.
emlun
Emil Lundberg
- Will now attempt to open device 3 times before failing
- OpenPGP: Don't say data is removed when not
- OpenPGP: Don't swallow APDU errors
- PIV: Block on-chip RSA key generation for firmware versions 4.2.0 to 4.3.4 (inclusive) since these chips are vulnerable to CVE-2017-15631.
yubikey-manager-0.4.5
- Version 0.4.5 (released 2017-09-14)
- OATH: Don’t print issuer if there is no issuer.
yubikey-manager-0.4.4
- Version 0.4.4 (released 2017-09-06)
- OATH: Fix yet another issue with backwards compability, for adding new credentials.
yubikey-manager-0.4.3
- Version 0.4.3 (released 2017-09-06)
- OATH: Fix issue with backwards compability, when used as a library.