https://git.schokokeks.org/derivepassphrase.git/tree/d2bb555fd898d63b413b37dc2bd1374d82daeffe 2025-07-26T16:45:41+02:00 tag:gitlist.org,2012:commit/d2bb555fd898d63b413b37dc2bd1374d82daeffe 2025-07-26T16:45:41+02:00 Marco Ricci software@the13thletter.info <pre>Record and provide more deterministic signatures for the test keys, where feasible. In particular, for DSA and ECDSA keys, support recording the RFC 6979 deterministic DSA signatures, as implemented by Pageant. In particular, this entails that the `expected_signature` and `derived_passphrase` fields of the test keys need to change to accomodate the new shape of the data. For the existing DSA and ECDSA keys, RFC 6979 signatures and expected master passphrases are also provided. Providing the Pageant 0.68–0.80 deterministic signatures and expected master passphrases however is not quite so straight-forward: because the signature class is the subject of CVE-2024-31497, Pageant < 0.81 is considered to have a security hole, and thus it is hard to obtain pre-compiled, unpatched installations of Pageant to compute the signatures/master passphrases against. &lt;/pre&gt; tag:gitlist.org,2012:commit/f567393b7cb50294e801e340e801345c13e5efe1 2025-07-26T11:45:19+02:00 Marco Ricci software@the13thletter.info <pre>A typo existed in the ECDSA NIST P-521 raw public key data, making it incompatible with the copy of the public key included in the raw private key blob. This caused UNIX Pageant (and likely any other SSH agent supporting deterministic DSA signatures, if they exist) to reject unloading and signing with that key, despite actually supporting the key format. So fix the typo, and add tests and machinery to ensure rudimentary consistency of all test key data. &lt;/pre&gt; tag:gitlist.org,2012:commit/ac6134a86e36ec296102dc1311e5616d01bab4f1 2025-07-23T20:13:06+02:00 Marco Ricci software@the13thletter.info <pre>These mistakes were carried over from v0.5, and cause woe on The Annoying OS even before actually running any tests. &lt;/pre&gt; tag:gitlist.org,2012:commit/4300ae11396bf35f969239755553674a42dc0aed 2025-06-26T18:29:58+02:00 Marco Ricci software@the13thletter.info <pre>* release-checklist: Fix more details in the release checklist, after the fact &lt;/pre&gt; tag:gitlist.org,2012:commit/61ebfcab313cfb49878b1f93ff3b53ae1255d48a 2025-06-24T22:28:10+02:00 Marco Ricci software@the13thletter.info <pre>Some details in the publishing of the documentation are slightly off. &lt;/pre&gt; tag:gitlist.org,2012:commit/ee6f43b6be4851f1f7611e13723448a8ead9b978 2025-06-24T22:09:38+02:00 Marco Ricci software@the13thletter.info <pre>&lt;/pre&gt; tag:gitlist.org,2012:commit/ca8f3a4bb2f00048b6e10b047b15ccb6166d67af 2025-06-24T21:59:36+02:00 Marco Ricci software@the13thletter.info <pre>&lt;/pre&gt; tag:gitlist.org,2012:commit/9a11cb8c83f6512ba01ae7d15e99055112ec39c2 2025-06-24T21:50:48+02:00 Marco Ricci software@the13thletter.info <pre>* release-checklist: Fix some details in the release checklist &lt;/pre&gt; tag:gitlist.org,2012:commit/6a2d34dc41201e7973255494987d2b8250d8a351 2025-06-24T21:48:33+02:00 Marco Ricci software@the13thletter.info <pre>The `bump-my-version` incantation was wrong, and actually already set up for committing and tagging. &lt;/pre&gt; tag:gitlist.org,2012:commit/ec96c351cabfc9133ef192acbaf92f61943b032e 2025-06-22T22:52:17+02:00 Marco Ricci software@the13thletter.info <pre>* documentation-fixes: Fix links to Windows SSH key support status elsewhere in the docs &lt;/pre&gt;