Releases: makepkg/SecureGen
Releases · makepkg/SecureGen
v2.1.0
SecureGen v2.1.0
🐛 Bug Fixes
- HOTP notifications — copy notification now correctly shows "HOTP code copied!" instead of "TOTP code copied!"
- HOTP display — fixed visual corruption when switching between TOTP and HOTP keys on device screen (sentinel -999 fix)
- HOTP loader — progress bar no longer overlaps "HOTP - Static Code" text; text correctly restores after loader completes
- Password copy — now uses centered animated popup instead of status bar (consistent with TOTP)
- Password reorder — fixed broken endpoint (was missing from both tunnel dispatchers); UI now refreshes after save
- Duplicate key — adding a key with an existing name now correctly shows an error instead of false success
- Key drag-and-drop — reordering TOTP/HOTP keys no longer mixes up timer and progress elements between rows
✨ Improvements
- Navigation guard — tab switching is blocked during initial page load to prevent race conditions and broken state
- Boot mode: Reboot with Web Server — now correctly skips mode prompt and forces WiFi when flag is set; works from Offline mode
- Sensitive logs removed — import/export file previews and data sizes no longer appear in browser console
- RTC Manager — DS3231 hardware clock module support extracted into dedicated manager
📸 Gallery
- Added HOTP light theme photo
- Added QR code export screen photo
- Added boot mode selection prompt photo
- Added ambient device photo (screen off)
🔐 Security
- Removed plaintext import/export data previews from browser console
- Navigation locked during crypto handshake initialization
Flash online: https://makepkg.github.io/SecureGen/flash
User Guide: https://makepkg.github.io/SecureGen/guide
SHA-256 Checksums
| File | SHA-256 |
|---|---|
merged-firmware.bin |
1c0380110e2ee640be85669fb313f37436a66ee246feda5d6c74feddbea7c3d3 |
firmware.bin |
910871b172484e8410e7e0f1a898e3262fc2036f0697bced3621b1a6f5f2104e |
bootloader.bin |
f9dadf628c836b3214c8aae10add34ceb773ad9a6739e824ad8ae2528f5026e6 |
partitions.bin |
aaae2888c5a6a348004b5b436f47abb25ae32e72d9003902955a998eda723edd |
SecureGen v2.0.0
SecureGen v2.0.0
Major security and feature release.
🔐 Security
- AES-256-GCM transport — all web communications now encrypted with AES-256-GCM (replaces XOR)
- PIN-encrypted device key — master key protected by PIN + PBKDF2-HMAC-SHA256 at rest
- Persistent PIN lockout — failed attempt counter survives reboots; locks after 5 total attempts
- Secure memory wipe before deep sleep — keys, secrets, and session data zeroed from RAM
- PBKDF2 iterations increased to 25,000
🔑 TOTP / HOTP
- HOTP support — counter-based codes, works offline without time sync
- SHA1 / SHA256 / SHA512, 6 and 8 digit codes, 30s / 60s periods
- QR code import — add keys by scanning QR from camera or file
- QR code export — display any key as QR on device screen and web interface
🌐 Web Interface
- Password generator in web cabinet
- Fixed import/export system
- Reduced ESP32 ↔ browser request count — improved performance
⚡ Hardware
- Fixed crashes on battery power when pressing buttons
- QR code for WiFi in AP mode — scan to connect instantly
- Captive portal in AP mode and WiFi setup flow
🛠 Tools
decrypt_export.html— offline browser tool for decrypting backups, editing keys and passwords
Flashing
Browser (easiest): flash.securegen.dev — one click, no software needed
esptool:
esptool.py --chip esp32 --port /dev/ttyUSB0 --baud 921600 \
write_flash \
0x1000 bootloader.bin \
0x8000 partitions.bin \
0x10000 firmware.binOr use the single merged binary:
esptool.py --port /dev/ttyUSB0 write_flash 0x0 merged-firmware.binSecureGen v1.0.0
Это Open-Source проект многофункционального TOTP-аутентификатора (аналог Google Authenticator) на базе платы LilyGo T-Display (ESP32). Устройство генерирует и отображает одноразовые пароли, управляется через удобный веб-интерфейс и обладает высоким уровнем безопасности за счет шифрования и хэширования.