ChangeLog

WARNING: This release contains backwards incompatible changes. Read the Changed section bellow for details.

Added

Maintainer script for spellchecking source archive files
Rule::Attribute class for representing the rule attributes
USBDeviceID class for represing the USB device ID
configure script option to control the bundling of PEGTL source files
id attribute to the rule language for specifing the USB device ID
Added a parent device ID field (and methods) to the Device class which
tracks the ID of the parent device
Implemented "parent-hash" attribute for associating a device with its
parent device.
The QtSvg module/library is now needed to compile the Qt applet
Qt Applet: Device Dialog settings work now
Qt Applet: The settings state is now remembered (via Qt's QSettings class)
Qt Applet: Implemented serial number masking
Qt Applet: Initial implementation of DeviceDialog window position randomization
Qt Applet: IPC exceptions are shown in the message log
Qt Applet: added an initial implementation of the device list with the ability
to change authorization target for each device
Qt Applet: show a grey version of the USBGuard icon in IPC disconnected state
usbguard-daemon.conf: added DeviceRulesWithPort setting (set to false by default)
Added support for selecting crypto backend library at compile time using the
--with-crypto-library configure script switch

IMPORTANT: The device hash value computation was changed to include the
USB descriptor data. Additionally, the algorithm was changed to SHA-256 and
the hash value representation to base64. These changes are backwards incompatible
and existing policies that use the hash attribute need to be updated.
Reimplemented the rule parser using PEGTL
Changed public API of the Rule and Device classes because of the new
Rule::Attribute class rule attribute representation
Extended the public IPCClient::IPCDisconnected method to include exception
related information
All rule attributes now support both the single and multivalued form
A rule attribute can now be specified only once
The default usbguard-daemon.conf and usbguard.service files now respect
the paths set by the configure script
New Qt applet icons with
Fixed Qt applet so that it doesn't show an empty window when starting
Qt Applet: Reject button is hidden by default.
Updated usbguard-daemon manual page
Permanent device specific rules managed by allowDevice, blockDevice and
rejectDevice actions are now handled properly. Existing device rules are
updated instead of just appending new rules to the policy.
usbguard-daemon.conf: changed the default configuration value of
PresentControllerPolicy to keep
Changed the device hashing algorithm to SHA-256
Switched hash value representation from hex to base64

Removed Quex related files
The "from Rule" Device class constructor was removed because it's use case
is unclear and it wasn't used anywhere

Many thanks to the following people for contributions to this release and to the USBGuard project:

Muri Nicanor (@murinicanor)
Rebecca N. Palmer (@rebecca-palmer)
JT (@jmtaylor90)
All the people who sent me their USB descriptors for testing purposes (fedora-devel, debian-user, reddit)

SHA256(usbguard-0.5.11.tar.gz)= 9b156552d169593d91400e9f021ed84c0e83e9eabfa71a985fd1b00a461feee7