Skip to content

v3.1.1
Compare
Choose a tag to compare
@ecrist ecrist released this 13 Oct 11:42
· 1167 commits to master since this release
v3.1.1
2083fb2
This commit was signed with the committer’s verified signature.
ecrist Eric Crist
GPG key ID: 72964219390D0D0E
Learn about vigilant mode.

2022-10-14 - Signatures were corrupted on upload. Re-uploading verified sigs.

What's Changed

  • Standardise all output for warn(), notice() and message():[New] by @TinCanTech in #574
  • Expand status reports to include checking a single certificate by @TinCanTech in #577
  • Introduce 'rewind-renew' - Recover "guineapig" renewed certificates by @TinCanTech in #579
  • Improve revocation and renewal functions by @TinCanTech in #580
  • Correctly quote 'sed' and auto-escape ampersand by @TinCanTech in #584
  • Auto-escape '&' and '$' in 'org' mode fields - Other minor tweaks by @TinCanTech in #590
  • Remove restrictive 30-day window hindering 'renew' by @TinCanTech in #594
  • Replace cert dates by @TinCanTech in #595
  • Introduce 'serialNumber' field for DN (OID 2.5.4.5) by @TinCanTech in #606
  • Upgrade-23: Assign a secure session for temporary directory by @TinCanTech in #623
  • Introduce 'renew-req': Create new CSR for an existing private key by @TinCanTech in #616
  • Restore files when 'renew' fails during 'build_full()' phase by @TinCanTech in #617
  • Ensure 'pki/renewed/' exist for 'rewind-renew' by @TinCanTech in #618
  • Allow vars file to exist in current directory (Fix make-cadir) by @TinCanTech in #635
  • gen-dh: Use temporary file by @TinCanTech in #636
  • sign--req: Prohibit COMMON as a certificate type by @TinCanTech in #637
  • show: Reorder parameter checks to guard against empty input by @TinCanTech in #639
  • verify_ca_init: Reorder names to improve error message by @TinCanTech in #638
  • Re-enable the use of --vars=file for init-pki by @TinCanTech in #640
  • Expand the possible values of $prog_dir, include full path by @TinCanTech in #641
  • vars_setup(): Always warn about unsupported characters in vars by @TinCanTech in #642
  • renew: Improve notices and input check by @TinCanTech in #645
  • Options: Check that $val is numeric when a number is expected by @TinCanTech in #646
  • Unsupported characters: Correct check and warning message by @TinCanTech in #649
  • sign-req: Enforce X509-type files exist and are used. (#581) by @TinCanTech in #650
  • cleanup: Make "clean line" respect silent, batch and quiet modes by @TinCanTech in #652
  • Overhaul vars detection by @TinCanTech in #655
  • detect_host: Use SSL Library version from EasyRSA version by @TinCanTech in #656
  • Options: Add '-s' to also enabe --silent mode. by @TinCanTech in #657
  • Options: Rescind deprecation notice of option --req-cn by @TinCanTech in #660
  • x509-types: Add x509-types location to usage() STATUS by @TinCanTech in #662
  • vars_setup: Correctly locate x509-types for usage() directory STATUS by @TinCanTech in #665
  • x509-types: Reset non-existent x509-types dir set by vars by @TinCanTech in #666
  • fixed typo by @ashutoshojha5 in #670
  • Options: Expand alias '--days' to all suitable options with a period by @TinCanTech in #674
  • Options: Introduce --keep-tmp=NAME; Keep the temporary session data by @TinCanTech in #667
  • Option --req-cn: Restore original behavior from v30x series by @TinCanTech in #682
  • renew-req: Add command option 'nopass' by @TinCanTech in #683
  • Remove renew-req by @TinCanTech in #685
  • Documentation: Add EasyRSA-Renew-and-Revoke.md by @TinCanTech in #690
  • X509-types: Always check SSL config file for EasyRSA insert-markers by @TinCanTech in #695
  • Rename 'renew' to 'rebuild' - Introduce 'renew' version 3 by @TinCanTech in #688
  • build-ca: Check x509-types 'ca' and 'COMMON' files exist by @TinCanTech in #697
  • Status Report 'show-renew': Include renewed certs from /cert_by_serial by @TinCanTech in #700
  • Doc-Update: Note that all changes were included with Easy-RSA v3.1.1 by @TinCanTech in #701
  • ChangeLog: Final update for v3.1.1 by @TinCanTech in #702
  • build_full: Remove sign_req() subshell and do full cleanup by @TinCanTech in #705
  • Option --keep-tmp: Append EASYRSA_TEMP_DIR_session random number by @TinCanTech in #711
  • Option --keep-tmp: Reliability improvements by @TinCanTech in #712
  • Opt. --subca-len: basicConstraints CA extension, Append 'pathlen:N' by @TinCanTech in #706
  • Refactor Netscape support by @TinCanTech in #710
  • help: Document supported certificate X509 types by @TinCanTech in #704
  • Remove obsolete command 'renewable' by @TinCanTech in #715
  • Doc: EasyRSA-Contributing.md - Update by @TinCanTech in #719
  • init-pki soft: Include delete of revoked and renewed sub-directories by @TinCanTech in #720

New Contributors

Full Changelog: v3.1.0...v3.1.1

Contributors

ashutoshojha5 and TinCanTech
Assets 8
Loading