Python-pkcs11

Changes in this release

* Release the GIL during PKCS11 calls, so that the asyncio ThreadExecutor can be used on slow PKCS11 calls.
* Add flag to use protected authentication path for login
* Add method to reinitialize PCKS11 for broken implementations
* Fix decoding of EC private keys in util

Changes in this release

* Finally includes Windows support
* Function pointers are retrieved from C_GetFunctionList, rather than directly
* Compatibility fixes

Changes in this release:

* Switch to the updated 2016 version of PKCS11 v2.4
* Use the new values for `AES_KEY_WRAP` and `AES_KEY_WRAP_PAD` (15).
* Add additional new mechanisms from most recent specification

API Breaking Changes

* `AES_KEY_WRAP` is now the default mechanism for wrapping AES keys, replacing ECB.

GPG Signature

This tag is signed with GPG key `1172 FC7B 4B57 5575 0C65 F9A5 44B8 0C28 0F80 807C`.

Changes in this release:

* Port the utilities from `pyasn1` to `asn1crypto` which is faster and more widely used, with more up to date structures, also includes features such as PEM detecting and armoring/unarmoring that a lot of people need.

API breaking changes:

* EC named curves are now strings either as a common name (e.g. `secp256r1`) or OIDs. This is a break from previously when they were `pyasn1` constants. This change should be easier for everyone involved.

GPG Signature

This tag is signed with GPG key `1172 FC7B 4B57 5575 0C65 F9A5 44B8 0C28 0F80 807C`.

Changes in this release:

* Fix bugs with string handling for information coming from library, slot and token
* Add certificate, key and signature interchange functions for X.509 and OpenSSL
* Fix bugs/add tests when exchanging data with OpenSSL/Python crypto libraries
* Cache object properties
* Fix encoding of EC_POINT for `derive_key`
* Use `AES_MAC` as the default signing/verification mechanism for AES
* Fix some crashes, e.g. when no mechanisms are present

Changes in this release:

* Handle no slots being present