v0.13.10-rc.3

What's Changed

• chore: fix migration keys v0.13.10 (#490) and v0.13.10-rc.3 by @dd23 in #491

Full Changelog: v0.13.10-rc.2...v0.13.10-rc.3

v0.13.10-rc.2

What's Changed

• fix: use default epoch_ID if not set and bump to v0.13.10-rc.2 by @dd23 in #481
• chore: add eip-712 validation in public decryption tests (#478) by @kc1212 in #485
• chore: do not drop receiver when peer has completed (#477) by @dd23 in #486

Full Changelog: v0.13.10-rc.1...v0.13.10-rc.2

v0.13.10-rc.1

What's Changed

• docs: changes checklist by @jot2re in #466
• ci: fix labeled pr by @fegmorte in #464
• Remove StorageCache by @dvdplm in #467
• feat: allow starting without signing key in recovery mode by @dd23 in #468
• chore: crs in epoch by @titouantanguy in #452
• chore: use rcgen and rustls-webpki k256-enabled forks from Zama org by @mkmks in #437
• chore: make core-client methods consistent by @kc1212 in #469
• chore: fix broken centralized backup test by @kc1212 in #473
• chore: depend on protected branches of rcgen, rustls-webpki, rustls by @mkmks in #474
• chore!: add eip712 for new epoch by @eudelins-zama in #471
• feat: add extra_data to core_client decryption by @dd23 in #470

Full Changelog: v0.13.10-rc.0...v0.13.10-rc.1

v0.13.10-rc.0

What's Changed

• fix: refactor deploy scripts by @fegmorte in #370
• fix: fix CI by @titouantanguy in #393
• chore: update bytes by @kc1212 in #395
• fix: fix small instance for slab by @fegmorte in #392
• chore: bump dependencies (aws security issue fix) by @dd23 in #397
• chore: NIST bench and KATs by @titouantanguy in #316
• feat: standard compressed keygen by @kc1212 in #375
• fix: cargo audit time crate by @maksymsur in #400
• feat!: reshare service -- epoch manager by @titouantanguy in #337
• fix: stability issues on KMS when getting out of sync by @jot2re in #388
• feat: compressed keygen centralized by @kc1212 in #396
• chore: bump ml-kem to v0.2.2 and kms to v0.13.0-rc.3 by @dd23 in #401
• chore: bump slab runner to v1.5.1 by @dd23 in #404
• chore: allow empty client_sk in insecure_process_user_decryption_resp by @kc1212 in #403
• fix: fix chart testing by @fegmorte in #409
• fix: fix chart testing by @fegmorte in #410
• fix: custom create EIF file by @maksymsur in #413
• chore: insecure keygen and integration test for compressed keys by @kc1212 in #402
• build: removed dead dependencies by @jot2re in #411
• chore!: updates to software version and backwards compatibility by @jot2re in #407
• chore: fix keyset type error in core-client by @kc1212 in #414
• feat: delete epoch from epoch manager by @kc1212 in #366
• chore: update redis server version by @eudelins-zama in #416
• chore: even more additional metrics by @jot2re in #394
• chore: resharing with compressed keys by @kc1212 in #406
• fix: do not add context twice from verifier by @kc1212 in #420
• feat(core-client/tests): k8s integration tests by @maksymsur in #391
• fix(zizmor): update trivy-action to v0.34.0 by @maksymsur in #427
• chore(core-client): robustness against failing cores and documentation by @dd23 in #408
• fix: backward compatibility of NetworkValue by @kc1212 in #421
• feat: bit lift protocol by @titouantanguy in #399
• fix: don't fetch key policies if key policy attestation is disabled by @mkmks in #431
• bug: Ensure all private elements get backed up #2892 by @jot2re in #418
• feat!: compressed keygen from existing secret by @kc1212 in #424
• fix: ensure custodian backup tests purge data so they can be re-ran without issue by @dvdplm in #417
• feat!: addition of configuration end point by @jot2re in #425
• feat: adding BGV mult by @titouantanguy in #423
• chore: bump version to v0.13.10-rc.0 by @dd23 in #433
• ci: Cleanup image after kind testing by @fegmorte in #430
• chore: refine testing infrastructure and tests exec time comparison by @maksymsur in #426
• fix!: handled issue with skip_serializing by @jot2re in #442
• chore: integration tests for compressed keygen from existing secret by @kc1212 in #438
• chore: removed non compressed keygen from core/threshold by @kc1212 in #439
• chore: public storage material validation by @eudelins-zama in #443
• chore: misc core-client improvements and centralized docker telemetry by @dd23 in #445
• chore: crs public storage validation by @eudelins-zama in #447
• feat: propagate tag during keygen from existing shares by @kc1212 in #444
• chore: streamlined migration by @jot2re in #429
• fix: change default context epoch by @jot2re in #446
• fix: spawn network tasks detached by @eudelins-zama in #454
• chore: bump rust, yq, grpc-health-check, tfhe-rs and trivy by @dd23 in #455
• chore: update quinn-proto by @eudelins-zama in #456
• fix: do not delete images from PRs with label docker by @dd23 in #458
• fix: expand the use of extra_data in EIP712 signature payloads by @mkmks in #453
• chore: reshare multiple keys in new epoch by @titouantanguy in #441
• chore: bump tfhe-rs to v1.5.4 by @dd23 in #461
• fix: issues with nightly tests by @jot2re in #460
• fix: check extra_data in wasm user decrypt responses by @mkmks in #465

New Contributors

• @dvdplm made their first contribution in #417

Full Changelog: v0.13.0-rc.2...v0.13.10-rc.0

v0.13.3

What's Changed

• chore: backported addition of prss fix to backup by @jot2re in #435

Full Changelog: v0.13.2...v0.13.3

v0.13.2

What's Changed

• chore: update chart version 1.5.1 by @fegmorte in #428
• fix: don't fetch key policies if key policy attestation is disabled (… by @mkmks in #432

Full Changelog: v0.13.1...v0.13.2

v0.13.1

What's Changed

• fix: backward compatible context ID to support v0.12.7 by @kc1212 in #419
• chore: bump kms to v0.13.1 and chart to v1.5.0 by @dd23 in #422

Full Changelog: v0.13.0...v0.13.1

v0.13.0

New Features in v0.13

• KMS Context logic
• Resharing between between different parties
• KMS operator backup
• Added and improved metrics and logs
• tfhe-rs v1.5 support
• many internal fixes and improvements

Note: This release is functionally identical to v0.13.0-rc.2.

What's Changed

• refactor: signcryption by @jot2re in #182
• chore!: remove sns compression keygen by @kc1212 in #218
• chore: move slower tests to nightly by @dd23 in #217
• chore: Revert "fix: delay dkg start time (#223)" by @kc1212 in #225
• fix: make sure preproc bucket is not deleted too early by @kc1212 in #226
• fix(ci): test cosign for common-docker by @fegmorte in #215
• fix: use locked dependencies in Dockerfiles by @dd23 in #228
• fix: take the correct number of tickets when launching preproc by @titouantanguy in #229
• feat: tagged keys by @kc1212 in #221
• fix: rewrite peer address to localhost in kms-server only by @mkmks in #220
• fix: enable no delay on kms core servers by @jot2re in #237
• ci: improve performance kind testing by @fegmorte in #235
• chore: update core config documentation, improve error logs by @dd23 in #232
• fix(ci): avoid running helm wf in release branch by @fegmorte in #236
• chore: upgrade toolchain to 1.91.0 by @kc1212 in #255
• feat: handle context and epoch IDs in service by @kc1212 in #230
• fix(chart): set default values for tokio and rayon by @fegmorte in #257
• chore: add context as argument to tls keygen by @kc1212 in #256
• chore: restrict key usage of CA cert by @kc1212 in #258
• chore: backup signcryption integration by @jot2re in #219
• chore: bump version to v0.13.0-rc.0 by @dd23 in #260
• chore: Add core endpoint and logic for partial preproc by @titouantanguy in #239
• fix: add encryption algo info to asymm AWS KMS decryption by @jot2re in #262
• chore: use release tag as version for npm release in workflow by @dd23 in #261
• feat: enable regenerating CA certs from existing signing keys by @mkmks in #265
• chore: load context from disk on startup by @kc1212 in #263
• test: backup related backwards compatibility tests by @jot2re in #238
• chore(docs): runbook for MPC operators / infra / devops by @maksymsur in #233
• chore: validate peer list in threshold config by @dd23 in #267
• chore: Using a safer deserialization with limited memory allocation by @titouantanguy in #266
• feat: Adding option to force hamming weight of the sks by @titouantanguy in #98
• fix(ci): add wasm testing by @fegmorte in #269
• chore: upgrade tfhe-rs to 1.4.2 by @kc1212 in #273
• fix: use deserialize_safe in js-api by @dd23 in #275
• chore: remove custodian docker compose by @kc1212 in #272
• feat: Adding network with 2 sets of parties by @titouantanguy in #268
• feat: context switch with tls by @kc1212 in #259
• chore(docker): update go-builder, yq, and grpc-health-probe versions by @dd23 in #234
• chore: integration test for new context by @kc1212 in #278
• chore: Handle TODOs for backup by @jot2re in #264
• fix: fix docker build with buildkit version by @fegmorte in #280
• feat: Implement open to party in another set by @titouantanguy in #277
• chore: store PRSS in new location by @kc1212 in #279
• chore: better manage connection in p2p network by @titouantanguy in #281
• allow ignoring AWS CA chain by @mkmks in #284
• chore: add version metric with kms prefix by @titouantanguy in #290
• fix: update chart version 1.4.13 by @fegmorte in #291
• feat: Reshare between 2 sets of parties (MPC protocol) by @titouantanguy in #289
• chore: upgrade alloy versions by @eudelins-zama in #293
• chore: 6 party context switch integration test by @kc1212 in #286
• chore: attest root key policy by @mkmks in #271
• chore: update toolchain in .env by @kc1212 in #282
• chore: destroy custodian contexts by @jot2re in #295
• chore(core-client): refactor functions by @dd23 in #299
• fix: add runs-on runner for testing by @fegmorte in #297
• chore: Reshare secret keys 2 sets + trait revamp by @titouantanguy in #292
• Fix typos by @samdotola in #85
• chore: remove role from backup operator by @kc1212 in #296
• chore: update num-bigint-dig by @kc1212 in #302
• chore: adding missing backwards compatibility tests by @jot2re in #298
• chore: reenable backward compatibility tests for backup by @kc1212 in #304
• chore: more extensive testing of reshare protocol by @titouantanguy in #301
• fix: fix chart releaser by @fegmorte in #305
• chore: improve logs (#303) by @dd23 in #306
• fix(chart): add liveness probe to the chart by @fegmorte in #308
• feat: sync public material after reshare by @kc1212 in #307
• feat: added more health metrics by @jot2re in #315
• feat: TLS certificate autorefresh by @mkmks in #326
• chore: integration test for resharing by @kc1212 in #328
• chore: bump rust version to v1.92 and fix new clippy issues by @dd23 in #335
• fix: fix readme by @fegmorte in #311
• fix: add check for existing helm releases by @fegmorte in #330
• ci: use npm trusted publishers (#323) by @aquint-zama in #329
• fix: fix performance testing to use repo chart by @fegmorte in #333
• feat!: remove my_id from config by @kc1212 in #300
• docs: added bincode warning by @jot2re in #339
• fix: respect attest_private_vault_root_key in cert resolver by @mkmks in #340
• fix: increase socat timeout by @fegmorte in #341
• chore: reshare service -- update session manager by @titouantanguy in #334
• fix(chart): add probes in values by @fegmorte in #343
• chore: fix cargo audit by @kc1212 in #344
• chore: added bincode to deny by @jot2re in #349
• feat: additional operational metrics by @jot2re in #327
• feat: add public_storage_prefix to context by @kc1212 in #346
• chore: do not pin minor go version (allow v1.25.x) and update yq to v4.50.1 by @dd23 in #347
• chore: fix nightly failure due to reconstruction error by @kc1212 in #348
• chore: fix RUSTSEC-2025-0137 by @kc1212 in #352
• feat: store shares under epoch ID by @kc1212 in #336
• chore: fix key digest verification by @kc1212 in #342
• chore: fix nightly autobackup by @kc1212 in #355
• fix: performance regression for decryption by @kc1212 in #356
• chore(deps): bump rsa from 0.9.8 to 0.9.10 by @fegmorte in #361
• chore: replace toolchain.txt by rust-toolchain.toml by @eudelins-zama in #354
• chore: upgrade private share storage to support epoch by @kc1212 in #351
• chart: update chart for v13.x by @fegmorte in #367
• chore: update switch and squash benchmark to test more bit lengths by @dd23 in #360
• chore: enable context and ...

v0.13.0-rc.2

What's Changed

• chore: v0.13.0-rc.2 version bump by @dd23 in #379
• feat(core/service): centralized isolated tests (PR-3) by @maksymsur in #376
• chore: add processed based and meta store metrics by @kc1212 in #380
• chore: follow up PR on metrics by @jot2re in #353
• fix: deadlock by @titouantanguy in #385
• chore: bump rust version to v1.93 by @dd23 in #384
• chore: add version endpoint by @dd23 in #382
• chore: add prometheus/jaeger docker compose and core-client periodic decryptions by @dd23 in #387
• chore: add logs when we wait too long for some sender by @titouantanguy in #331
• fix: handle eager evaluation issues by @jot2re in #389
• feat(core/service): threshold isolated tests (PR-4) by @maksymsur in #381

Full Changelog: v0.13.0-rc.1...v0.13.0-rc.2

v0.12.8

New Features

• fixed a potential deadlock in the networking logic that could cause the kms-core freezing indefinitely
• added more metrics regarding system utilization and removed the redundant default name tags from metrics
• minor improvements and version upgrades

What's Changed

• chore: upgrade alloy versions by @eudelins-zama in #332
• chore: bump rust version to v1.92 and fix new clippy issues (#335) by @dd23 in #338
• chore: remove default name tag in TaggedMetric (#369) by @dd23 in #372
• chart: fix backup config from value file by @fegmorte in #373
• chart: get backup config from value by @fegmorte in #374
• chore: metrics to uncover memory usage issue by @kc1212 in #371
• fix: deadlock v.0.12.x by @titouantanguy in #386
• chore: add prometheus/jaeger docker compose and core-client periodic decryptions v0.12.x by @dd23 in #383

Full Changelog: v0.12.7...v0.12.8