⛰️ Features

• Update to draft-ietf-openpgp-pqc-10 (#565) - (01a9643)

🚜 Refactor

• Cleanup the interface of crypto::*::SecretKey - (45e1ea8)

⛰️ Features

• Impl Deref for pgp::crypto::ed25519::SecretKey (#562) - (e5d44a2)

🐛 Bug Fixes

• Skip padding packets analogously to marker packets (#563) - (d667b67)

Errors

• Lower enum size from 120 bytes to 80 (#561) - (490fc22)

⛰️ Features

• Implement PQC draft 08 - (a843ebf)
• Add support for V6 keygen (#539) - (33097df)
• Implement PublicKeyAlgorithm::is_pqc (#552) - (6e6fa24)
• Imprint function - (c17d370)
• Implement primary key binding signing; cleanup fn names - (976a03c)
• Update pqc tests and links to draft-ietf-openpgp-pqc-09 - (7dfdf40)

🐛 Bug Fixes

• (message) Remove done state in sym_encrypted reader - (9c78e99)
• Make KeyDetails::new public again (#557) - (cff8ea2)
• Check primary key binding signature for signing capable subkeys - (cd4ca99)
• Produce and handle embedded primary key binding (backsig) - (af4fb28)

🚜 Refactor

• Move subkey binding creation to packet - (4834bde)

📚 Documentation

• Add a bit of text (#532) - (e83f4e9)
• Add doctest example for listing User IDs in a key (#553) - (21c735b)

🧪 Testing

• Generate key with signing capable subkey, check embedded signature - (e4cc899)

Cleanup

• Simplify SignatureConfig creation (#559) - (9c1c3c0)

⛰️ Features

• Implement TryFrom for Signed{Public,Secret}Key - (f9e7694)
• [breaking] Implement feature gate for x448 - (e16fa47)
• Update deps - (8222112)

🐛 Bug Fixes

• Correctly deal with multi buffer reads in dearmoring - (7637f18)

🚜 Refactor

• Remove unused feature flags - (d800fb5)

📚 Documentation

• Update changelog - (2cdd934)
• Add information about ROS audit to security status - (651bb28)

🧪 Testing

• Add cargo fuzz testing harnesses - (de9dcf1)
• Move some slow tests to ignore, to speed up default tests - (7d16c1c)
• Split up key tests for better speed - (3bc007f)
• Split up tests more - (9abb7fa)

⚙️ Miscellaneous Tasks

• Clippy fixes - (116568b)
• Drop rust-toolchain (#449) - (3a8267a)
• Remove beta workflows - (51727ad)
• Remove duplicated check tasks - (f21bf0c)
• Remove even more duplicated checks - (1a3b8d6)
• Remove duplicated wasm checks - (fef441b)
• Use nextest to run tests - (3b4e22b)
• Add Cargo.lock - (e6a6864)

🐛 Bug Fixes

• Fix CVE-2024-53857 "Potential Resource Exhaustion when handling Untrusted Messages"

📚 Documentation

• Update changelog - (d9aef6a)

⛰️ Features

• Derive Hash for KeyId (#437) - (779b76d)

🐛 Bug Fixes

• Fix CVE-2024-53856: "Panics on Malformed Untrusted Input"
• Make strip_leading_zeros_vec() work correctly - (57e11c5)
• Csf normalization for signing - (8439a6d)
• Extend is_signing_key() and is_encryption_key() for RFC 9580 algorithms (#434) - (a1d9d5c)
• Enable the zeroize feature for argon2 and sha1-checked (#440) - (0c45660)

🚜 Refactor

• Optimize Display implementation for BlockType - (00b5027)
• Merge write_packet_len into write_packet_length - (33dcc83)

🧪 Testing

• Avoid writing to the crate source unnecessarily during tests (#431) - (3a1bb5c)

⚙️ Miscellaneous Tasks

• Remove unused and erratic end_of_line() fn (#421) - (69ab41c)
• Relax dependencies - (c6662a3)
• Adjust allowed licenses to match what we're using (#438) - (910d9af)
• Use prepend for changelog gen - (7a60d1a)

With this release, rpgp gains support for the latest and greatest version of the OpenPGP spec, namely RFC9580!

⛰️ Features

• Improve more debug impls - (3d73320)
• Password protection removal and setting for secret key packets - (700cba2)
• Improve API of LiteralData to provide more flexibility - (34728e0)
• Rfc9580 keys - (f09666c)
• Make SignatureConfig::hash_signature_data more flexible - (c6d6b2c)
• Rfc9580 encryption - (5d3547a)

🐛 Bug Fixes

• Decrypted data must contain exactly one message - (00ee8ee)
• V6 ESK may only be combined with v2 SEIPD - (5ec3578)
• Parameter ordering for set_password - (39dd449)
• Add special error message for packet 20 - (49c8403)
• Revert to producing short padding for ecdh - (7c94189)
• Parameter name - (c9cdfaf)
• Reject unknown critical subpackets while hashing for signature verification - (b8b43a7)
• Implement various constraints that rfc 9580 mandates - (5682b08)
• Limit the use of S2K KDF with weak hash algorithms - (cb26cfd)
• When verifying signatures, check alignment between key version and signature version - (b771b78)
• Message parser: drop esk packets with versions that are not aligned with the encrypted container - (5b27240)
• Fail composed key parsing on hard errors during packet parsing - (a9de958)

🚜 Refactor

• Remove bigger macros in favor of direct types - (0b1d778)
• Smaller refactors - (8dcba01)
• Derive debug impls - (d714064)
• Remove unused Deserialize trait - (b18f046)
• Cleanup and improve Mpi API - (1803407)

📚 Documentation

• Update RFC links (#414) - (9473cf5)
• Add/improve comments - (73c89d0)
• Update text about implementation status (#417) - (92123ee)

🧪 Testing

• Roundtrip ecdh test against rPGP 0.10 - (1dd91ea)
• Ignore another sks-dump test failure - (1c0cd84)
• Rename "opengpg-interop" to "openpgp-interop" - (f3292f7)
• Skip writing files by default (#404) - (6e51094)
• Add signature verification tests (RFC 9580 Annex A.6 and A.7) (#409) - (0439dd5)
• Exercise SEIPDv2 encrypt/decrypt for a range of message sizes - (f9c48dd)

⚙️ Miscellaneous Tasks

• Rename PublicKeyAlgorithm::EdDSA to EdDSALegacy - (d30ce26)
• Rename PublicKeyTrait::to_writer_old into serialize_for_hashing - (017be15)
• Bump MSRV to 1.75 - (67551a8)
• Update push from master to main (#386) - (7b5f5b7)
• Use write_u8 - (882dcc3)
• Add cargo deny check - (d4a7905)
• Add PkeskVersion, SkeskVersion types - (bc79460)
• Rework ecdh public params to be able to represent opaque data - (276768e)

🐛 Bug Fixes

• Revert to producing short padding for ecdh - (e60ecdf)
• Revert to producing short padding for ecdh. (#385) - (c5df70c)

🧪 Testing

• Roundtrip ecdh test against rPGP 0.10 - (d8b2058)

⚙️ Miscellaneous Tasks

• Update msrv and branch conditoins - (1710ef3)