2.3. Release v04.02.00
¶
2.3.1. Build system changes¶
Added support for powershell (
scripts/env_setup.ps1
) to set environment variables for generating build files. Refer - Windows BuildDefault applet in build configuration changed to SE050E.
2.3.2. APIs & enum/types Changes¶
Extended
smStatus_t
with new error codesUpdated behaviour of
sss_se05x_key_object_get_handle()
to return a success and print warning if it is unable to read attributes but the object exists so that other operations (like deleting) can proceed if they don’t depend on object attributes.
2.3.3. Functional Changes¶
Updated OEF specific SCP keys handling. See Section 3.9.1.1 Configuring for OEF specific Platform SCP keys
mbed-crypto removed and PSA support moved to mbedTLS v2.26.0. See Section 8.3 Platform Security Architecture
2.3.4. New feature support¶
SE050E applet support added. (Enabled by default in build configurations).
SE051-H applet support added (Provides PAKE support).
Openssl engine can be build with ‘host crypto = mbedtls’ and ‘host crypto = user’ also.
2.3.5. SSSCLI Changes¶
Added precompiled libraries for Applet version 03.XX and 07.02 in
binaries/PCWindows/ssscli/03_XX
andbinaries/PCWindows/ssscli/07_02
. Default configuration is set to 03.XX
2.3.6. Examples / DEMO updates¶
Added Secure Authenticator (Qi) demo Section 5.7.32 Secure Authenticator (Qi) Authentication demo
Default port for access manager clients changed to 8040.
Added read and delete policies to authentication objects created by Section 5.7.28 Delete and Test Provision
2.3.7. Other Miscellaneous Changes¶
Access manager (with Unix sockets) clients to stop when access manager process is killed.
FD_CLOEXEC option set when access manager opens unix socket. (FD_CLOEXEC flag specifies that the file descriptor should be closed when an exec function is invoked).
Bug fix : Memory leak fix on open session with wrong keys
Bug fix : Linux VCOM driver communicates very slow.
Session handling cleaned up for PKCS11 library. Session ID is returned to the appplication instead of session handle pointer. Added mapping table from session handle to session handle pointer and added sanity checks before using the session for any operation. See Section 8.7 PKCS#11 Standalone Library