CHANGES - third_party/github.com/stefanberger/swtpm - Git at Google

 CHANGES - changes for swtpm

 version 0.3.4:
   - swtpm:
     - Fix compilation for cygwin
   - swtpm_setup & swtpm-localca:
     - Get rid of bash's eval when invoking external tools to avoid abuse.
       Only use eval for 'resolving' variables.
   - tests:
     - Various fixes of minor issues

 version 0.3.3:
   - swtpm_setup:
     - openSUSE: Support tcsd configuration where tss user != tss group,
                 such as root/tss; Fedora & Ubuntu for example use tss/tss
   - build-sys:
     - Check whether tss user and group are available

 version 0.3.2:
   - swtpm:
     - Remove unnecessary #include <seccomp.h> (fixes SuSE build)
     - Make coverity happy by handling default case in case statement
   - swtpm_setup:
     - bugfix: Create ECC storage primary key in owner hierarchy
     - bugfix: remove tpm2_stirrandom and tpm2_changeeps
   - tests:
     - Adjusted pcrUpdateCounter in tests to succeed with PCR TCB group fixes
       in libtpms TPM 2 code

 version 0.3.1:
   - swtpm:
     - Fix vtpm proxy case without startup flags

 version 0.3.0:
   - swtpm:
       - Support for applying 'TPM Startup' command during initialization
       - Use writev_full rather than writev; fixes --vtpm-proxy EIO error
       - Only accept() new client ctrl connection if we have none (bugfix)
   - swtpm_setup & related scripts:
       - Support whitespaces in filenames and paths
       - Do not fail on future PCR banks' hashes
   - swtpm_cert:
       - Fix OIDs for TPM 2 platforms data
       - Option parsing cleanup
       - Support for passing password in various forms
       - Use gnutls_x509_crt_get_subject_key_id API call for subj keyId
       - Support 64bit serial numbers read from command line
   - swtpm_ioctl:
       - Block SIGPIPE so we can get EPIPE on write()
   - swtpm_bios:
       - Block SIGPIPE so we can get EPIPE on write()
   - tests:
       - Increased timeouts and better support for running tests with
         executables run by valgrind
       - Allow running tests with choice of seccomp profile option
         (SWTPM_TEST_SECCOMP_OPT) to enable building for Ubuntu
       - Various cleanups & fixes
   - SELinux:
       - More rules added for support on F30

 version 0.2.0:
   - Linux: swtpm now runs with a seccomp profile (blacklist) if compiled with
            libseccomp support
   - Added subpport for passing key and passphrase via file descriptor
   - TPM 2 commands can now be prefixed by 'the TCG header' and responses will
     have a 4-byte prefix and 4-byte suffix.
   - Added --print-capabilities command line option
   - Proper handling on EINTR on read, poll, and write

 version 0.1.0:
   first public release
	CHANGES - changes for swtpm

	version 0.3.4:
	- swtpm:
	- Fix compilation for cygwin
	- swtpm_setup & swtpm-localca:
	- Get rid of bash's eval when invoking external tools to avoid abuse.
	Only use eval for 'resolving' variables.
	- tests:
	- Various fixes of minor issues

	version 0.3.3:
	- swtpm_setup:
	- openSUSE: Support tcsd configuration where tss user != tss group,
	such as root/tss; Fedora & Ubuntu for example use tss/tss
	- build-sys:
	- Check whether tss user and group are available

	version 0.3.2:
	- swtpm:
	- Remove unnecessary #include <seccomp.h> (fixes SuSE build)
	- Make coverity happy by handling default case in case statement
	- swtpm_setup:
	- bugfix: Create ECC storage primary key in owner hierarchy
	- bugfix: remove tpm2_stirrandom and tpm2_changeeps
	- tests:
	- Adjusted pcrUpdateCounter in tests to succeed with PCR TCB group fixes
	in libtpms TPM 2 code

	version 0.3.1:
	- swtpm:
	- Fix vtpm proxy case without startup flags

	version 0.3.0:
	- swtpm:
	- Support for applying 'TPM Startup' command during initialization
	- Use writev_full rather than writev; fixes --vtpm-proxy EIO error
	- Only accept() new client ctrl connection if we have none (bugfix)
	- swtpm_setup & related scripts:
	- Support whitespaces in filenames and paths
	- Do not fail on future PCR banks' hashes
	- swtpm_cert:
	- Fix OIDs for TPM 2 platforms data
	- Option parsing cleanup
	- Support for passing password in various forms
	- Use gnutls_x509_crt_get_subject_key_id API call for subj keyId
	- Support 64bit serial numbers read from command line
	- swtpm_ioctl:
	- Block SIGPIPE so we can get EPIPE on write()
	- swtpm_bios:
	- Block SIGPIPE so we can get EPIPE on write()
	- tests:
	- Increased timeouts and better support for running tests with
	executables run by valgrind
	- Allow running tests with choice of seccomp profile option
	(SWTPM_TEST_SECCOMP_OPT) to enable building for Ubuntu
	- Various cleanups & fixes
	- SELinux:
	- More rules added for support on F30

	version 0.2.0:
	- Linux: swtpm now runs with a seccomp profile (blacklist) if compiled with
	libseccomp support
	- Added subpport for passing key and passphrase via file descriptor
	- TPM 2 commands can now be prefixed by 'the TCG header' and responses will
	have a 4-byte prefix and 4-byte suffix.
	- Added --print-capabilities command line option
	- Proper handling on EINTR on read, poll, and write

	version 0.1.0:
	first public release