Skip to content

@ecrist ecrist released this Sep 16, 2020

3.0.8 (2020-09-09)

  • Provide --version option (#372)
  • Version information now within generated certificates like on *nix
  • Fixed issue where gen-dh overwrote existing files without warning (#373)
  • Fixed issue with ED/EC certificates were still signed by RSA (#374)
  • Added support for export-p8 (#339)
  • Clarified error message (#384)
  • 2->3 upgrade now errors and prints message when vars isn't found (#377)
  • Update OpenSSL Windows binaries to 1.1.1g
  • Reverted OpenSSL back to 1.1.0j
Assets 8

@ecrist ecrist released this Mar 31, 2020

3.0.7 (2020-03-30)

  • Include OpenSSL libs and binary for Windows 1.1.0j
  • Remove RANDFILE environment variable (#261)
  • Workaround for bug in win32 mktemp (#247, #305, PR #312)
  • Handle IP address in SAN and renewals (#317)
  • Workaround for ash and no set -o echo (#319)
  • Shore up windows testing framework (#314)
  • Provide upgrade mechanism for older versions of EasyRSA (#349)
  • Add support for KDC certificates (#322)
  • Add support for Edward Curves (#354, #350)
  • Add support for EASYRSA_PASSIN and EASYRSA_PASSOUT env vars (#368)
  • Add support for RID to SAN (#362)
Assets 8

@ecrist ecrist released this Feb 2, 2019

3.0.6 (2019-02-01)

  • Certifcates that are revoked now move to a revoked subdirectory (#63)
  • EasyRSA no longer clobbers non-EASYRSA environment variables (#277)
  • More sane string checking, allowingn for commas in CN (#267)
  • Support for reasonCode in CRL (#280)
  • Better handling for capturing passphrases (#230, others)
  • Improved LibreSSL/MacOS support
  • Adds support to renew certificates up to 30 days before expiration (#286)
    • This changes previous behavior allowing for certificate creation using
      duplicate CNs.
Assets 6

@ecrist ecrist released this Sep 15, 2018

3.0.5 (2018-09-15)

  • Fix #17 & #58: use AES256 for CA key
  • Also, don't use read -s, use stty -echo
  • Fix broken "nopass" option
  • Add -r to read to stop errors reported by shellcheck (and to behave)
  • remove overzealous quotes around $pkcs_opts (more SC errors)
  • Support for LibreSSL (now works on latest version of MacOS)
  • EasyRSA version will be reported in certificate comments
  • Client certificates now expire in 3 year (1080 days) by default
Assets 6

@ecrist ecrist released this Jan 21, 2018

3.0.4
* Remove use of egrep (#154)
* Integrate with Travis-CI (#165)
* Remove "local" from variable assignment (#165)
* Other changes related to Travis-CI fixes
* Assign values to variables defined previously w/local
* Finally(?) fix the subjectAltName issues I presented earlier (really
fixes #168

Assets 6

@ecrist ecrist released this Aug 22, 2017

Minor update that includes the mktemp Windows binary.

Assets 6

@ecrist ecrist released this Aug 21, 2017

Add missing Windows binaries and publish release.

Assets 6

@ecrist ecrist released this Oct 26, 2015

This release addresses some packaging and documentation issues. With 3.0.0, the binaries needed to run EasyRSA on Windows were missing. Additionally, the documentation was released in a format that wasn't easily readable on that platform (markdown).

Please find updated Unix and Windows packages attached. There are NO functionality changes in this release.

Assets 6

@ecrist ecrist released this Sep 3, 2015

This is the official Easy-RSA 3.0 release. The changes between rc2 and this release are relatively minor. The notable changes are:

  • -utf8 is now the default. This shouldn't break ASCII but will now support international character strings.
  • The private keys are now encrypted with aes256 by default, replacing the former default, 3des
Assets 6
Sep 3, 2015