aegis-crypto (1.1.5maemo1) unstable; urgency=low
  - Removed libbb5-dev from depends, this seems to be unnecessary.
 -- Marcin Mielniczuk <marmistrz@linux.pl>  Sat, 30 Jun 2012 12:12:50 +0200

aegis-crypto (1.1.5maemo0) unstable; urgency=low
  * Initial port for Fremantle
 -- Marcin Mielniczuk <marmistrz@linux.pl>  Thu, 14 Jun 2012 17:58:48 +0200

aegis-crypto (1.1.5) unstable; urgency=low

  Allow opening and recovering files which pass header integrity check
  but are missing data.
  * Fixes: NB#299280 - Facebook client stopped to work after SSU

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Tue, 13 Mar 2012 18:57:08 +0200

aegis-crypto (1.1.4) unstable; urgency=low

  Fixed verification of signed files with no content.
  * Fixes: NB#292777 - Aegisfs signed mount points are vulnerable

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Thu, 19 Jan 2012 11:09:46 +0200

aegis-crypto (1.1.3) unstable; urgency=low

  Proper handling of disk full case SIGBUS.
  * Fixes: NB#294275 - Accounts password asked when disk full

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Wed, 04 Jan 2012 14:25:22 +0200

aegis-crypto (1.1.2) unstable; urgency=low

  TCB signing fixes.
  * Fixes: NB#292929 - Reference hashlist corrupted

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Thu, 08 Dec 2011 09:25:13 +0200

aegis-crypto (1.1.1) unstable; urgency=low

  Moved encrypted files to the home partition by default.
  * Fixes: NB#266824 - Passwords are asked after reflashing
  Also added support for stores that know an alternative
  storage location.

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Wed, 02 Nov 2011 18:41:31 +0200

aegis-crypto (1.1.0) unstable; urgency=low

  Implements new concurrency manager for protected stores
  that uses shared memory in stead of notifications.
  Store storage index files by saving to a temporary filename
  and then renaming rather then by overwriting.
  * Fixes: NB#269898 - Interrupted installation leads to signing errors
  * Fixes: NB#281577 - Crypto-api tests are unstable
  Also fixes untagged 283420 - ssu failure when roots full

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Thu, 20 Oct 2011 14:17:40 +0300

aegis-crypto (1.0.4) unstable; urgency=low

  The same as 1.0.2 and 1.0.3 with a different bug number
  * Fixes: NB#277650 - aegis-enabler does not provide for resource 'tcb-sign'

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Tue, 11 Oct 2011 14:10:28 +0300

aegis-crypto (1.0.1) unstable; urgency=low

  Made the dependency to aegis-enabler conditional
  Aegis-enabler is only available in armel configs so
  made the runtime dependency from libaegis-crypto1
  conditional.
  * Fixes: NB#277214 - Package aegis-enabler has no installation candidate

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 12 Aug 2011 16:17:36 +0300

aegis-crypto (1.0.0) unstable; urgency=low

  The Asia sales release. Closes the door of illegal
  modifying of the files protected by /etc/aegis_vdata by
  enforcing the check against the SW certificate. Also added
  automatic local signing at check time if the caller has tcb
  and in the postinstall script to handle updates.
  * Fixes: NB#262043 - Final security hardening for storage

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Thu, 11 Aug 2011 15:36:52 +0300

aegis-crypto (0.4.7) unstable; urgency=low

  Added CAP::fowner for the clear user data script
  * Fixes: NB#266684 - Encrypted user data wasn't cleared

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Mon, 27 Jun 2011 13:57:10 +0300

aegis-crypto (0.4.6) unstable; urgency=low

  Added the clear user data script
  * Fixes: NB#266684 - Encrypted user data wasn't cleared

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Wed, 22 Jun 2011 15:34:04 +0300

aegis-crypto (0.4.5) unstable; urgency=low

  Allow use of undefined tokens for signing in an BB5-emulated
  environment
  * Fixes: NB#261230 - Aegisfs fails to install on scratchbox/x86

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Wed, 01 Jun 2011 15:30:20 +0300

aegis-crypto (0.4.4) unstable; urgency=low

  Added the hash_of_file function for aegisfs. Fixed the iterator
  handling error in storage::remove_all_files. These changes are
  needed to fix
  * Fixes: NB#183100 - New mountpoints become effective only after restart

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 27 May 2011 14:39:52 +0300

aegis-crypto (0.4.3) unstable; urgency=low

  Upgraded the file encryption to XST-AES IEEE Std 1619-2007
  * Fixes: NB#251695 - Protected storage encryption should use a standard algorithm

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 13 May 2011 15:03:37 +0300

aegis-crypto (0.4.2) unstable; urgency=low

  Restore old map pointer in p_file::roundup if the new mapping
  cannot be made because of loss of memory so that the old mapping
  does not remain lingering
  * Fixes: NB#238847 - Runaway leftover mappings in AegisFS

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Thu, 28 Apr 2011 17:04:24 +0300

aegis-crypto (0.4.1) unstable; urgency=low

  Allow modifying an existing protected store in the build environment
  without identity.
  * Fixes: NB#245409 - npe-maemo0-test-cert breaks RD images

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Tue, 12 Apr 2011 09:49:09 +0300

aegis-crypto (0.4.0) unstable; urgency=low

  Implemented concurrency control by help of semaphores and
  inotifies. Also fixed the following bugs:
  * Fixes: NB#238847 - Runaway leftover mappings in AegisFS
  * Fixes: NB#238880 - Inconsistent directory entries after vmem full

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 08 Apr 2011 13:29:55 +0300

aegis-crypto (0.3.9) unstable; urgency=low

  If the decryption of the AES key in pe_file::p_open fails
  for whatever reason, the file was erroneously considered
  opened (m_omode != om_closed) which caused crashes when
  p_close was automatically called in the destructor.
  * Fixes: NB#239012 - COREWEB /usr/bin/sysuid - AES_encrypt
  * Fixes: NB#239373 - sysuid sigsegv
  * Fixes: NB#238360 - COREWEB /usr/bin/sysuid - sha1_block_data_order

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Thu, 24 Mar 2011 10:30:20 +0200

aegis-crypto (0.3.8) unstable; urgency=low

  Fixed an error which caused global signatures in the
  device when an invalid token was given. Also use the
  bb5_get_kernel_mode function to check the TEE mode
  and consider all tokens valid when libcreds is not
  available.
  * Fixes: NB#236656 - Account creation fails with unknown error
  * Fixes: NB#233438 - AegisFS crash during tiobench run
  * Fixes: NB#233433 - AegisFS quits when device full
  Added zeroing of padded data when file shrinks under 4 kB
  * Fixes: NB#233594 - SQLite databases get easily corrupted with WAL mode
  Disabled debug output by default
  * Fixes: NB#233893 - libaegis-crypto1 spends a lot of time in logging
  Made the debug lock socket nonblocking
  * Fixes: NB#234096 - SSU ERROR: could not add certificate to omb-user
  Using DEB_BUILD_OPTIONS in configure.ac to control the aegis-crypto-doc
  so that an empty doc-package is generated if options contains "nodocs".

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 18 Mar 2011 19:01:16 +0200

aegis-crypto (0.3.7) unstable; urgency=low

  Disabled signature checking for externally signed stores entirely
  for the time being. There is something odd in the build system which
  resets /etc/aegis_vdata after integration. Any build which doesn't
  actually execute the post-install script is missing the signatures made
  by it.
  * Fixes: NB#236656 - Account creation fails with unknown error
  * Fixes: NB#233438 - AegisFS crash during tiobench run
  * Fixes: NB#233433 - AegisFS quits when device full
  Added zeroing of padded data when file shrinks under 4 kB
  * Fixes: NB#233594 - SQLite databases get easily corrupted with WAL mode
  Disabled debug output by default
  * Fixes: NB#233893 - libaegis-crypto1 spends a lot of time in logging
  Made the debug lock socket nonblocking
  * Fixes: NB#234096 - SSU ERROR: could not add certificate to omb-user
  Using DEB_BUILD_OPTIONS in configure.ac to control the aegis-crypto-doc
  so that an empty doc-package is generated if options contains "nodocs".

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 18 Mar 2011 15:50:28 +0200

aegis-crypto (0.3.6) unstable; urgency=low

  Made the access control check in storage::commit less strict
  by allowing commits with invalid resource tokens when in the
  build environment.
  * Fixes: NB#236656 - Account creation fails with unknown error
  Also disabled inotifies in the build environment. Qemu doesn't
  support the feature.

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Tue, 15 Mar 2011 15:53:12 +0200

aegis-crypto (0.3.5) unstable; urgency=low

  Handle gracefully errors caused by running out of memory or disk space.
  * Fixes: NB#233438 - AegisFS crash during tiobench run
  * Fixes: NB#233433 - AegisFS quits when device full
  Added zeroing of padded data when file shrinks under 4 kB
  * Fixes: NB#233594 - SQLite databases get easily corrupted with WAL mode
  Disabled debug output by default
  * Fixes: NB#233893 - libaegis-crypto1 spends a lot of time in logging
  Made the debug lock socket nonblocking
  * Fixes: NB#234096 - SSU ERROR: could not add certificate to omb-user
  Using DEB_BUILD_OPTIONS in configure.ac to control the aegis-crypto-doc
  so that an empty doc-package is generated if options contains "nodocs".

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Mon, 14 Mar 2011 12:32:31 +0200

aegis-crypto (0.3.4) unstable; urgency=low

  Added file-signing functions for tcb integrity checks, the
  so called 'aegis-verify' functionality.
    Allowed creating an empty file with just the O_CREAT flag in
  an encrypted store.
  * Fixes: NB#227754 - open(O_CREAT) call fails on AegisFS
    Fixed argument handling in accli while adding the new switches
  for tcb-operations.
  * Fixes: NB#222708 accli tool doesn't parse command line arguments properly

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 04 Mar 2011 16:07:35 +0200

aegis-crypto (0.3.3) unstable; urgency=low

  If running with working libcreds don't allow creating a store with an invalid
  token
  * Fixes: NB#227045 - creating a store under a bogus credential causes weird effects
  Use the filename of a pstore to check if it was properly initialized
  * Fixes: NB#224320 - COREWEB: {/usr/bin/devicelockd,/usr/bin/sysuid} 'AES_encrypt...
  Make sure not to break the domain if the merge tool doesn't have the needed tokens
  to write to the store
  * Fixes: NB#227995 - certificate manager backup restores a broken domain
  Fixed the premature termination of reading input data from a pipe in accli.
  Added performance tests in accli for FPROT.

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 25 Feb 2011 13:49:28 +0200

aegis-crypto (0.3.2) unstable; urgency=low

  Added command-line utility apsmerge for restoring signed stores
  in an intelligent manner, by merging the current and restored
  content together. Needed by certificates backup.
    Fixed these errors with access control checks that caused crashes and
  uncontrollable behaviour.
  - Return -1 in stead of false from storage::get_file, storage::stat_file
    when no read access.
  - Always check for NULL return value from storage::member
  Made nbrof_files return -1 if there is no read access. Allowed get_ufiles
  even when no read access to enable getting a list of underlying files
  for backup purposes. Made apscli to show a meaningful error message
  when it has no access to an encrypted store.
    Call bb5_esn_init only when reading the IMEI code, so no more need to
  have CRP::cal unless IMEI code is needed.
  * Fixes: NB#223042 - SSU:CAL ERROR: open(/dev/mtd1): Permission denied

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Tue, 01 Feb 2011 18:14:17 +0200

aegis-crypto (0.3.1) unstable; urgency=low

  Changed the permissions of /var/lib/aegis/ps/Gs back to 1755.
  * Fixes: NB#222559 - readonly pemission on Gs directory for root breaks ssu check
  ...as it appears that scratchbox's sb-conf command is not able
  to remove files in directories it doesn't have write permission of
  even when running as root. To be restored when a new scratchbox
  version is available.

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Thu, 27 Jan 2011 15:23:39 +0200

aegis-crypto (0.3.0) unstable; urgency=low

  TEE-based encryption for key management enabled:
  * Fixes: NB#192123 Possible to restore backup with DRM FWD lock content on different device
  Also made subdirectories under /var/lib/aegis/ps owned by user.crypto as
  a first step towards hardening. Still world-writable, though.

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Tue, 25 Jan 2011 19:02:37 +0200

aegis-crypto (0.2.9) unstable; urgency=low

  Fixed the DAC checking so that it takes into account also
  supplementary groups and caller's dac_override capability
    Implemented signing for protected storage when chipset
  security or resource tokens are not available by adding
  a hash to /etc/aegis_vdata. Also taken away the silly
  restriction of not modifying global signed stores unless
  root and allowed reading of store even without credentials.
  * Fixes: NB#210529 - 	Unknown error shown and unable to configure accounts

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Mon, 13 Dec 2010 13:12:50 +0200

aegis-crypto (0.2.8) unstable; urgency=low

  Bumped the revision number up due to a mixup and integration.
  Also implemented checking the DAC bits when opening files.
  Dropped support for libaegis-crypto0.

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 03 Dec 2010 12:23:59 +0200

aegis-crypto (0.2.7) unstable; urgency=low

  Relaxed symlink handling so that links do not have
  to point inside the same protected store.
    Added a resource token access check in bb5_set_programid
  of the BB5 emulator to simulate the real TrEE behaviour.
    Added a check in aegis::storage::storage to check that
  if a token is given, the caller has that token and the
  token is the same which was used to create the store.
  * Fixes: NB#183641 - resource token check is missing
    Added a check for the failure of setting the AES key
  in p_open
  * Fixes: NB#205110 - pe_file::p_popen crashes if set_aes_key fails

 -- Juhani Mäkelä <ext-juhani.3.makela@nokia.com>  Fri, 19 Nov 2010 16:28:52 +0200
