Release 0.6.13

• Version 0.6.13.
• Added pkcs11-eventmgr systemd service unit.
• Updated Russian translations for pam_pkcs11 (thx Max Kosmach
  and Andrey Cherepanov).
• Fixed possible authentication bypass (CVE-2025-24032):
  Use signatures to verify authentication by default
  (thx Frank Morgner).
• Fixed possible authentication bypass (CVE-2025-24531):
  Restoring the original card_only / wait_for_card behavior
  (thx Matthias Gerstner, Frank Morgner).
• Move pam_securetty.so upward in the example PAM config.
• Set 'slot_num' configuration parameter to 0 by default
  (thx Jpereyra316).
• Print details about configuration parse errors (thx Jpereyra316).
• Add Chinese (Simplified) translation.
• Capitalize all PAM messages (thx Alynx Zhou).
• Made pkcs11_make_hash_link support whitespaces in file names
  (thx Ivan Skorikov).

Release 0.6.12

• Limited the signature length to 65536 bytes.
• Workaround for buggy PKCS#11 C_Sign() implementation that always returns the same signature length along with CKR_BUFFER_TOO_SMALL (thx @mskalski).
• Don't stuck if wait_for_card=false and ignore the token not found error when the authentication isn't restricted to card only (either by the option card_only or by PKCS11_LOGIN_TOKEN_NAME environment variable).
• Added an example PAM configuration which uses the ignore status result.
• Added screen_savers to the example config.
• Fixes to deal with old and new OpenSSL versions.
• Various small fixes including type casts and printf() formats.