0.3.0

What's Changed

• connection management for load_balancer. by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#286
• Reduce spin features and pin it by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#291
• switch conn_events to mpsc from broadcast channel by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#290
• Switch to local ciborium. Pin some deps by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#292
• Deploy health check by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#293
• dedicated service checker tool by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#297
• Remove entrust bindgen output by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#296
• capture HSM idle time by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#298
• User accounting by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#295
• increase session cache size by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#299
• remove manual From's for OpError by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#300
• fix missing hsm metrics by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#302
• refactor common agent service hosting by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#303
• Dependency updates by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#304
• record recovery events in GCP pub/sub by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#305
• Move builds to new bucket in project juicebox-infra by @abochannek in juicebox-systems/juicebox-hsm-realm-private#308
• limit WARN log spew in logging subscriber by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#309
• set timeouts for grpc clients by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#307
• Use http2 keep-alives on grpc connections by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#310
• Update to Codesafe 13.4.3 release by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#311
• remove unused next_is_leader var by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#313
• Add scope to auth token by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#306
• Switch ciborium and gcp_auth to submodules by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#314
• restart_watching needs to retry on failure to get HSM status by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#315
• capture more info in service checker by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#317
• Instrument pub/sub methods by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#318
• rev sdk hash by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#319
• Add user prefix and forever options to service_checker by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#320
• rememeber to actually use tracer options by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#321
• Update depencencies by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#322
• improve tracing usage by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#323
• Rename entrust-hsm.sar to entrust_hsm.sar by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#316
• Allow trace rate to be set for lb by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#325
• retry pub/sub 502 errors by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#327
• Add testing endpoint to load balancer by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#328
• Add entrust-specific CI job with codesafe iso zip by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#329
• Service checker: capture cdn info for debugging by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#330
• report network latency metric from service checker by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#332
• Change histogram metrics to distributions by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#333
• Update Debian/Ubuntu by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#326
• Add entrust_ops tool (adapted from ceremony tool) by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#335
• add http client timeouts and metrics by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#336
• remove service bind on reqwest::Client by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#338
• service_checker: Check TLS expiration date by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#341
• verify/fixup message string in ServiceCheckOptions by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#344
• cluster manager should rebalance group leadership if needed. by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#342
• Use larger CI runners by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#346
• testing: Improve logging when launching pubsub by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#347
• Expand parse_duration to accept units by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#348
• move cargo audit to separate workflow by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#350
• Some clean-up before starting compaction by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#351
• Use a secret key to randomize record IDs by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#331
• Become leader logging / retry not captured by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#349
• ensure tags are valid by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#353
• Tighten/clarify some mutex guard lifetimes by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#354
• Improve metrics_tag macro by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#358
• Test hsm realm against released versions of the client by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#357
• fix "hang" in read_log_entry when log entry doesn't exist by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#356
• Update parse_duration to require explicit units by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#355
• Add big panic header when output is going to a terminal by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#360
• Add metric for gcp token getting time by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#362
• Hsm cross version testing by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#361
• Add git and host build info to /livez and --version by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#363
• Update Rust to 1.74 and update SDK to latest with Rust 1.74 by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#364
• CI: Upgrade cross_version_hsm to larger runner by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#366
• build_info: Add rustc version by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#367
• Pick up gcp_auth improvements by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#368
• watchdog/panic on bad hsm/agent leadership state by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#369
• cycle to a new warmed up bigtable connection every 55 mins by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#365
• add software_hsm & service_checker to build scripts by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#370
• CI: Set a timeout of 20 minutes on each job by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#373
• use more than one core in cluster_bench by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#374
• extend pubsub/bigtable startup timeouts by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#375
• fix some rustdoc issues by @simon-4242 in juicebox-systems/juicebox-hsm-realm-private#376
• Add log compaction by @diego-juicebox in juicebox-systems/juicebox-hsm-realm-private#372
• Fix bigtable read retries by @diego-juicebo...

0.2.0

What's Changed

• Add GitHub actions CI workflow by @diego-juicebox in #1
• Start agent, HSM, store, actors with cluster initialization by @diego-juicebox in #2
• Add client request path, including load balancers by @diego-juicebox in #3
• MerkleRadix Tree by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/4
• Verify Merkle Proof by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/5
• agent: Fix out-of-order log appends by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/6
• Merkle refactors by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/7
• Move read out of Tree and into new agent module by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/8
• verify tree invariants during tests by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/9
• Create additional HSM groups by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/10
• hsm: Reject requests when the partition doesn't own the uid by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/11
• fix incorrect leaf deletion when re-inserting the same key/value by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/12
• Add TreeOverlay by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/13
• Add prefix to InteriorNode hash + tests by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/14
• Add ownership transfer protocol by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/15
• Add split tree operation to Merkle Tree. by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/16
• UserId refactor To TenantId/UserId/RecordId by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/17
• Merkle Tree Integration by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/18
• Replace DataChange enum with Option by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/19
• use RecordId directly as key type in merkle tree by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/20
• Change MerkleHasher to plain Sha256 from Hmac by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/21
• Update main to insert some records before splitting the groups by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/22
• Secure Value Recovery integration with MVP by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/23
• Change client-loadbalancer network from Actix to HTTP by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/24
• Delete reference server by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/25
• Port agent from actix to hyper by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/27
• Support arbitrary split/merge on merkle tree by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/26
• Support tree merge during transfer in by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/28
• Breakup merkle source by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/29
• http'ify interface to store by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/30
• Fix bugs related to removing old items from the store by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/31
• Remove Delta type by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/32
• bigtable hello world by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/33
• Track Prefix+Hash as node identity through StoreDelta & Store by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/34
• Make TreeStoreReader an async trait by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/35
• add path_lookup to TreeStoreReader trait by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/36
• Http'ify HSM by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/38
• Replace in-memory store with Bigtable by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/37
• Add work-around for hyper bug relating to RST's from server by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/39
• Small misc by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/41
• remove hash from LeafNode / InteriorNode structs by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/40
• Encrypt leaf by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/43
• Bigtable follow up by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/44
• Move HSM to own process by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/45
• Cross compile/test to 32bit PowerPC by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/48
• Split out separate hsmcore crate in workspace by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/49
• Make load balancer and agent separate processes by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/50
• Build hsmcore without std by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/51
• Switch to ciborium for serialization (no_std friendly) by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/52
• make hsmcore no_std by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/53
• remove third party bitvec from hsmcore and impl our own by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/54
• Some hsmcore refactors to enable entrust impl's by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/55
• Add HSM benchmark by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/56
• Fix proof crash from benchmark by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/57
• Defer bigtable deletes so slow concurrent readers can access nodes by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/58
• Entrust HSM & Agent implementations by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/60
• free up some space on CI image by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/62
• Attempt graceful recovery from SEEWorld crash by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/61
• lb refresh on schedule instead of per request by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/63
• Make tree overlay configurable by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/65
• log hsm execution time at hsm client & entrust transport by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/64
• improve read_last_log_entry by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/67
• Add OpenTelemetry tracing by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/66
• instrument entrust inner rpc by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/68
• client: Rename "password" to "tag" to match docs by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/69
• Instrument collect_captures and some minor instrumentation tweaks. by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/71
• Replace GetRandom with rand traits by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/72
• Standardize quorum voting by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/73
• CI: Make clippy check tests, too by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/76
• move authtoken handling (prep for noisy) by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/77
• Update bigtable createTable calls so they work on real bigtable by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/78
• Allow bigtable prj/inst to be set on cmdline. deal with data/admin URL differences. by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/79
• HSM metrics reporting by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/74
• Client/LB connection should use HTTPS by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/80
• Reload TLS cert/key on SIGHUP by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/81
• remove HsmRpcError from ClientError by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/84
• Migrate demo and other references to be based off the sdk by @Imperiopolis in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/83
• Bigtable v2 updates for log by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/85
• Bigtable integration tests by @simon-loam in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/86
• Integrate Noise for client-HSM communication by @diego-juicebox in https://github.com/juicebox-systems/juicebox-hsm-realm/pull/87
• Bigtable Service discovery updates. by @simon-loam in https://github.com/juicebox-systems/j...