What's Changed

• Add BitBox02 microSD backup import option by @3rdIteration in #200
• Add disk cleanup to CI build workflow by @3rdIteration in #201
• Handle unzipped build images in workflow by @3rdIteration in #204
• Add Seedkeeper card cloning workflow by @3rdIteration in #205

Full Changelog: SS0.8.6+Satochip+Earthdiver-B5...SS0.8.6+Satochip+Earthdiver-B6

What's Changed

• Add larger SeedKeeper storage allocation options by @3rdIteration in #189
• Add microSD PSBT loading to Satochip tools by @3rdIteration in #188
• Bump pyscard to 2.3.1 by @3rdIteration in #191
• Allow toggling smartcard flag in build workflow by @3rdIteration in #199
• Upstream fixes/updates in SeedSignerOS

Full Changelog: SS0.8.6+Satochip+Earthdiver-B4...SS0.8.6+Satochip+Earthdiver-B5

To Build:

git clone https://github.com/3rdIteration/seedsigner-os
cd seedsigner-os
git checkout SS0.8.6+Satochip+Earthdiver-B5
git submodule init
git submodule update
SS_ARGS="--all --app-repo=https://github.com/3rdIteration/seedsigner --app-branch=SS0.8.6+Satochip+Earthdiver-B5 --smartcard" docker compose up --force-recreate --build

SHA256 Checksums (And message to verify)

43a8bccc90d3b067cc82b9be5b905724eb6a29b020e28ab76ab3470c9c64be9c seedsigner_os.SS0.8.6_Satochip_Earthdiver-B5_.pi0-smartcard.img.zip
18aa274a406237083feb93d4bb86fadc9235bbcd03c6b22b20da91e3f3dad2d8 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B5_.pi02w-smartcard.img.zip
4ff3117f2f55c388326aeebc7f04fcaf941471d425fe1f85ccb79698e5dd199e seedsigner_os.SS0.8.6_Satochip_Earthdiver-B5_.pi2-smartcard.img.zip
c25ac0e88652701250a3834e029bc8f20661fa142f02bc432588af5371008898 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B5_.pi4-smartcard.img.zip

Bitcoin Message Signature:

H/CqexurOBbqgeju0Q6ynBk3HiVHqOoW6K3B8lZcApdh0MJAqRYgMNx7p63xMv6gQHIntY8YNAk7NpzMzcE9Q2o=

Signature Verification
You can confirm that the checksums are correct by verifying the Bitcoin Message Signature above with a "Message" containing the signatures of the two files. (All of the information between the lines above) with the Bitcoin address "37hiiSB1Poj6Shs8WawPS2HjT2jzHkFSQi".

This is a public tip address of mine that can be verified via:

My video descriptions (Basically any video on my channel: https://www.youtube.com/channel/UCEviBQwLv-yfv3BErm0ojHg/)
Reddit profile (https://www.reddit.com/user/Crypto-Guide/comments/czy13u/a_post_or_video_of_mine_was_helpful_feel_free_to/)
Website (https://cryptoguide.tips/send-me-a-tip/)

It is an "Electrum" formatted message that can be verified with software like Electrum, Sparrow or web based tools like https://www.verifybitcoinmessage.com/ or https://bitaps.com/signature

Notable changes since last release:

• Add some extra logic around Satochip transaction signing to remove any trust in the applet.
• Add a range of GPG key features for encrypted messaging, file encryption and verification. Also supports BIP85 derivation with configurable UID information and a range of key types (NIST P-256, Brainpool P-256, RSA 2048, RSA 3072, RSA 4096, or secp256k1);
• Added a CLI tool for BIP85 GPG reference and testing
• Note that ECC curves currently go beyond the official BIP85 which is in discussion...
• Add Satochip card type filter for "Common" tasks.
• Improvements to some Javacard Applets (Adds serial number to SmartPGP cards, Seedkeeper cards now flashed with 8kb storage space by default)
• Add QR-based system time setting (Also automatically prompts to adjust the time if a GPG cert creation date is in the future)
• Kef (KEF Encryption Format) update by @earthdiver in #16
• Various bug fixes and optimizations
• Check Seedkeeper free space before saving secrets by @3rdIteration in #180
• Warn when Satochip card fingerprint mismatches PSBT by @3rdIteration in #181
• Handle Satochip authentikey absence gracefully by @3rdIteration in #185
• Handle Satochip multisig PSBTs without xpub lookup by @3rdIteration in #187
• Kef by @earthdiver in #186

Full Changelog: SS0.8.6+Satochip+Earthdiver-B4-A2...SS0.8.6+Satochip+Earthdiver-B4

Build with matching versions of SeedSigner-OS and SeedSigner-Smartcard with:
git checkout 61f0a091f4a1e4da729a5c4b677a14563337dc61
SS_ARGS="--all --app-repo=https://github.com/3rdIteration/seedsigner --smartcard --app-branch=SS0.8.6+Satochip+Earthdiver-B4" docker compose up --force-recreate --build

SHA256 Checksums (And message to verify)

b19e1f11b63fd4124b8f13e809c5fca9ae8e03485a2bd4e169cbc5c5c95d7042 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B4_.pi0-smartcard.img.zip
71f105fb5101146a06a7882417217c2d474a16f76d54de3ca11d7f157e0afeaa seedsigner_os.SS0.8.6_Satochip_Earthdiver-B4_.pi02w-smartcard.img.zip
80d5bca6ec18b39349ff25be69b66e01d1df84d7e0307e35bd689132f42ef349 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B4_.pi2-smartcard.img.zip
ddb9957cda8efd2341b71c046ec96dc15419b9d2a2b95efc085755efc851f821 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B4_.pi4-smartcard.img.zip

Bitcoin Message Signature:

H2kONNrnWKFs7aEIwHI2JHrY0eHfv5SaF9kJFVEO7IsqsUzrXOAAhCJhLZ7UiDin69Hpmzc5hIrZkLxISoJEv48=

Signature Verification
You can confirm that the checksums are correct by verifying the Bitcoin Message Signature above with a "Message" containing the signatures of the two files. (All of the information between the lines above) with the Bitcoin address "37hiiSB1Poj6Shs8WawPS2HjT2jzHkFSQi".

This is a public tip address of mine that can be verified via:

My video descriptions (Basically any video on my channel: https://www.youtube.com/channel/UCEviBQwLv-yfv3BErm0ojHg/)
Reddit profile (https://www.reddit.com/user/Crypto-Guide/comments/czy13u/a_post_or_video_of_mine_was_helpful_feel_free_to/)
Website (https://cryptoguide.tips/send-me-a-tip/)

It is an "Electrum" formatted message that can be verified with software like Electrum, Sparrow or web based tools like https://www.verifybitcoinmessage.com/ or https://bitaps.com/signature

Changes since B4-A1

*Fix issue with USB readers not working by default on PiZero models.
*OpenCT is disabled by default.

Notable changes since last release:

• Add some extra logic around Satochip transaction signing to remove any trust in the applet.
• Add a range of GPG key features for encrypted messaging, file encryption and verification. Also supports BIP85 derivation with configurable UID information and a range of key types (NIST P-256, Brainpool P-256, RSA 2048, RSA 3072, RSA 4096, or secp256k1);
• Added a CLI tool for BIP85 GPG reference and testing
  Note that ECC curves currently go beyond the official BIP85 which is in discussion...
• Add Satochip card type filter for "Common" tasks.
• Improvements to some Javacard Applets (Adds serial number to SmartPGP cards, Seedkeeper cards now flashed with 8kb storage space by default)
• Add QR-based system time setting (Also automatically prompts to adjust the time if a GPG cert creation date is in the future)
• Kef (KEF Encryption Format) update by @earthdiver in #16
• Various bug fixes and optimizations

Note that this is an alpha and may contain bugs, especially with some of the GPG stuff which brings together a bunch of moving parts with Python, GnuPG backend, and SeedSignerOS + Buildroot changes...

Full Changelog: SS0.8.6+Satochip+Earthdiver-B3...SS0.8.6+Satochip+Earthdiver-B4-A1

Changes since last release:

• Satochip card transaction signing and PSBT verification
• Satochip Message signing and xpub export (single and multisig) with address explorer integration
• BIP32 account prompt when exporting xpubs (disabled by default)
• Smartcard info screen with card UID and genuineness check
• SLIP39 seed creation, import, and extendable shares with configurable seed word lengths
• WIF and BIP38 key signing support (disabled by default)
• Settings to toggle smartcard and SLIP39 features and to configure smartcard PIN attempts
• SeedKeeper Electrum seed support and splitted passphrase/encryption key QR codes
• Enhanced entropy monitoring with hardware RNG, quality indicators and optional 30-minute wipe timer
• Desktop simulation mode with system camera support

Build with matching versions of SeedSigner-OS and SeedSigner-Smartcard with:
git checkout 5da0cde2da0e4b203c5779d721bc443b76de9727
SS_ARGS="--all --app-repo=https://github.com/3rdIteration/seedsigner --smartcard --app-branch=SS0.8.6+Satochip+Earthdiver-B2-A1" docker compose up --force-recreate --build

SHA256 Checksums (And message to verify)

9acdb6d295697ea9bb518d58490f2db2e9a5ea3319186da37b9b0c90b8d2f321 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B3_.pi0-smartcard.img.zip
f6783bb69a034cd392071fe1551803621c89efdb7fb2bf26e82bd96fb7fb8dbf seedsigner_os.SS0.8.6_Satochip_Earthdiver-B3_.pi02w-smartcard.img.zip
b3f0f5ef90b4cfca17cc3faff749fd194df0fbe5b0812b909f3b431c9d3ec990 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B3_.pi2-smartcard.img.zip
65750d86b0180c9e07514ffd1bba1f5d5bfc9b1bf622ecdf90b4bd2a54d45b99 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B3_.pi4-smartcard.img.zip

Bitcoin Message Signature:

H0c3BHP+7EJbzfJaN5aGsfGqQSxa1IRieXFhpRt27ZfBLqhFYbw+JiqLQeohBd70dl6qAETGvEZbUGPKEN6nDMk=

Signature Verification
You can confirm that the checksums are correct by verifying the Bitcoin Message Signature above with a "Message" containing the signatures of the two files. (All of the information between the lines above) with the Bitcoin address "37hiiSB1Poj6Shs8WawPS2HjT2jzHkFSQi".

This is a public tip address of mine that can be verified via:

My video descriptions (Basically any video on my channel: https://www.youtube.com/channel/UCEviBQwLv-yfv3BErm0ojHg/)
Reddit profile (https://www.reddit.com/user/Crypto-Guide/comments/czy13u/a_post_or_video_of_mine_was_helpful_feel_free_to/)
Website (https://cryptoguide.tips/send-me-a-tip/)

It is an "Electrum" formatted message that can be verified with software like Electrum, Sparrow or web based tools like https://www.verifybitcoinmessage.com/ or https://bitaps.com/signature

This is a pre-release and has not been thoroughly tested... Expect bugs...

New features since B2.

• New Satochip features
  • Sign transactions on-card
  • Sign messages on-card (The release message below was signed with this build :) )
  • export xpub to wallet software
  • load on-card xpub for use in address explorer
• Add SLIP39 Support for creating, regenerating and store/load to seedkeeper (Disabled by default, can enable in the settings)
• Add support for all standard BIP39 seed lengths (Still defaults to 12 and 24, can enable others in the settings)
• Add Shannon Entropy check for Dice entropy and Camera Entropy
• Add additional entropy to camera based seed generation, mixes in from hardware RNG... (Because why not... and it fixes fault conditions where camera passes a blank/dark image)
• Add entropy indicator to camera preview
• Add additional address verification check when exporting xpub
• Add wipe-timer (defaults to off)
• Add initial Waveshare UPS battery support (not properly tested, WIP)
• Add option to sign with raw WIF for BIP38 keys (Can be enabled/disabled in the settings)
• Add support to save/load electrum keys to Seedkeeper
• Added ability to show/hide smartcard stuff in settings menu
• Moved hardware related stuff into it's own menu in settings.
• Extra split-passphrase features from Earthdiver
• Optimise UART config in SeedSigner-OS to dramatically improve performance of Smartcard operations

Build with:
SS_ARGS="--all --app-repo=https://github.com/3rdIteration/seedsigner --smartcard --app-branch=SS0.8.6+Satochip+Earthdiver-B3" docker compose up --build

SHA256 Checksums (And message to verify)

88bde73d8c3d5acef4393abbb70d2d37cc152e1ff58df28b706790c59c67f3c1 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B2-A1_.pi0-smartcard.img.zip
8a0a07872c1f23ba7cf2ab6fd41b22bcd782270267157cf7845edbf798e86371 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B2-A1_.pi02w-smartcard.img.zip
8ffebf27926b1b905661d0f4e71317027c892e852d1a91958c8eef109e524647 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B2-A1_.pi2-smartcard.img.zip
6fb5d1b3f467474893ac5e6daeafe0ccf194aa2e686597ae6431c5e02f304b87 seedsigner_os.SS0.8.6_Satochip_Earthdiver-B2-A1_.pi4-smartcard.img.zip

Bitcoin Message Signature:

TBC

Signature Verification
You can confirm that the checksums are correct by verifying the Bitcoin Message Signature above with a "Message" containing the signatures of the two files. (All of the information between the lines above) with the Bitcoin address "37hiiSB1Poj6Shs8WawPS2HjT2jzHkFSQi".

This is a public tip address of mine that can be verified via:

My video descriptions (Basically any video on my channel: https://www.youtube.com/channel/UCEviBQwLv-yfv3BErm0ojHg/)
Reddit profile (https://www.reddit.com/user/Crypto-Guide/comments/czy13u/a_post_or_video_of_mine_was_helpful_feel_free_to/)
Website (https://cryptoguide.tips/send-me-a-tip/)

It is an "Electrum" formatted message that can be verified with software like Electrum, Sparrow or web based tools like https://www.verifybitcoinmessage.com/ or https://bitaps.com/signature

• Fix bug preventing loading of some seeds/secrets
• Fix bug with address explorer

Build with:
git checkout SS0.8.6+Satochip+Earthdiver-B2
SS_ARGS="--all --app-repo=https://github.com/3rdIteration/seedsigner --smartcard --app-branch=SS0.8.6+Satochip+Earthdiver-B2" docker compose up --force-recreate --build

SHA256 Checksums (And message to verify)

25121e9288bc648d56e41f423dc778539b8b2f61618d1d3a6dc50ac8360cf6b9 seedsigner_os.SS0.8.6+Satochip+Earthdiver-B2.pi0-smartcard.img.zip
4c4d4cb2dbfe484b0853dbaa042571fe603cf38348ba07395bd9976f56da901d seedsigner_os.SS0.8.6+Satochip+Earthdiver-B2.pi02w-smartcard.img.zip
64f6fc6285d49d98127a14181bd88b95932dcb43bf6847043302a8624647a1c6 seedsigner_os.SS0.8.6+Satochip+Earthdiver-B2.pi2-smartcard.img.zip
33e8ac79b59b1d95a10fd8d6480147cbfa79dbf168c0047065b14d7098183a63 seedsigner_os.SS0.8.6+Satochip+Earthdiver-B2.pi4-smartcard.img.zip

Bitcoin Message Signature:

IBAQlLMRhNqzoHEbPu4OKdSvd6PVJz9YqDgBDvXi5460de42vOHQKOgSlOqC2HACf0jHiGcONj8e79SGqKb4AeE=

Signature Verification
You can confirm that the checksums are correct by verifying the Bitcoin Message Signature above with a "Message" containing the signatures of the two files. (All of the information between the lines above) with the Bitcoin address "37hiiSB1Poj6Shs8WawPS2HjT2jzHkFSQi".

This is a public tip address of mine that can be verified via:

My video descriptions (Basically any video on my channel: https://www.youtube.com/channel/UCEviBQwLv-yfv3BErm0ojHg/)
Reddit profile (https://www.reddit.com/user/Crypto-Guide/comments/czy13u/a_post_or_video_of_mine_was_helpful_feel_free_to/)
Website (https://cryptoguide.tips/send-me-a-tip/)

It is an "Electrum" formatted message that can be verified with software like Electrum, Sparrow or web based tools like https://www.verifybitcoinmessage.com/ or https://bitaps.com/signature

Updates to SeedSigner 0.8.6, mainly adding extra languages, supporting larger screens and fixing some bugs.

SS_ARGS="--all --app-repo=https://github.com/3rdIteration/seedsigner --smartcard --app-branch=SS0.8.6+Satochip+Earthdiver-B1" docker compose up --force-recreate --build

SHA256 Checksums (And message to verify)

deca37cbc561a69718ee5aed95113f278e49879a424b31da798a94c40339af1b seedsigner_os.dev.pi0-smartcard.img.zip
afce99a4ce12c9fc847d06c9ff4b4c471054fbb18bb010d6cd985331d182139e seedsigner_os.dev.pi02w-smartcard.img.zip
5f56bb0450b9800bd7fce52514c4548f608518e79308d410c6dc72dda53bc120 seedsigner_os.dev.pi2-smartcard.img.zip
d3905f694314413a3ad488a926a56b82e840071a99ae8ce84ded5aa9e42aa257 seedsigner_os.dev.pi4-smartcard.img.zip

Bitcoin Message Signature:

IKehWYpildHqspbTN1a4aKTmKmn7o9iWo9iYss4ZP0zWOkdvv7EwfF9nHa+ZTyKLflLooUgFjl2jb+dPyMPigyQ=

Signature Verification
You can confirm that the checksums are correct by verifying the Bitcoin Message Signature above with a "Message" containing the signatures of the two files. (All of the information between the lines above) with the Bitcoin address "37hiiSB1Poj6Shs8WawPS2HjT2jzHkFSQi".

This is a public tip address of mine that can be verified via:

My video descriptions (Basically any video on my channel: https://www.youtube.com/channel/UCEviBQwLv-yfv3BErm0ojHg/)
Reddit profile (https://www.reddit.com/user/Crypto-Guide/comments/czy13u/a_post_or_video_of_mine_was_helpful_feel_free_to/)
Website (https://cryptoguide.tips/send-me-a-tip/)

It is an "Electrum" formatted message that can be verified with software like Electrum, Sparrow or web based tools like https://www.verifybitcoinmessage.com/ or https://bitaps.com/signature

• Fix issues with smartcard reliability when MicroSD is removed
• Update MicroSD tools to work with updated MicroSD driver
• Fix some menu navigation issues

Built with:
SS_ARGS="--all --app-repo=https://github.com/3rdIteration/seedsigner --smartcard --app-branch=SS0.85+Satochip+earthdriver-b8" docker compose up --force-recreate --build