2018-11-01 07:46:13 +00:00
|
|
|
# Changelog
|
|
|
|
All notable changes to this project will be documented in this file.
|
|
|
|
|
|
|
|
The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/)
|
|
|
|
and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html).
|
|
|
|
|
2021-10-20 21:31:33 +00:00
|
|
|
## [Unreleased - 0.17.7] - DATE
|
2021-09-24 21:24:28 +00:00
|
|
|
### Added
|
2021-10-29 22:09:53 +00:00
|
|
|
- Support for generate extractable keys and certificates on a pkcs#11 module.
|
2021-09-24 21:24:28 +00:00
|
|
|
### Changed
|
|
|
|
### Deprecated
|
|
|
|
### Removed
|
|
|
|
### Fixed
|
|
|
|
### Security
|
|
|
|
|
2021-10-20 21:31:33 +00:00
|
|
|
## [0.17.6] - 2021-10-20
|
|
|
|
### Notes
|
|
|
|
- 0.17.5 failed in CI/CD
|
|
|
|
|
2021-10-20 20:41:26 +00:00
|
|
|
## [0.17.5] - 2021-10-20
|
|
|
|
### Added
|
|
|
|
- Support for Azure Key Vault as a KMS.
|
|
|
|
- Adapt `pki` package to support key managers.
|
|
|
|
- gocritic linter
|
|
|
|
### Fixed
|
|
|
|
- gocritic warnings
|
|
|
|
|
2021-09-28 23:15:23 +00:00
|
|
|
## [0.17.4] - 2021-09-28
|
|
|
|
### Fixed
|
|
|
|
- Support host-only or user-only SSH CA.
|
|
|
|
|
2021-09-24 21:24:28 +00:00
|
|
|
## [0.17.3] - 2021-09-24
|
2018-11-01 07:46:13 +00:00
|
|
|
### Added
|
2021-09-07 18:39:49 +00:00
|
|
|
- go 1.17 to github action test matrix
|
2021-09-09 00:46:55 +00:00
|
|
|
- Support for CloudKMS RSA-PSS signers without using templates.
|
2021-09-23 00:41:12 +00:00
|
|
|
- Add flags to support individual passwords for the intermediate and SSH keys.
|
2021-09-24 20:50:47 +00:00
|
|
|
- Global support for group admins in the OIDC provisioner.
|
2018-11-01 07:46:13 +00:00
|
|
|
### Changed
|
2021-09-07 18:39:49 +00:00
|
|
|
- Using go 1.17 for binaries
|
2018-11-01 07:46:13 +00:00
|
|
|
### Fixed
|
2021-09-22 22:15:19 +00:00
|
|
|
- Upgrade go-jose.v2 to fix a bug in the JWK fingerprint of Ed25519 keys.
|
2018-11-01 07:46:13 +00:00
|
|
|
### Security
|
2021-09-01 20:21:59 +00:00
|
|
|
- Use cosign to sign and upload signatures for multi-arch Docker container.
|
2021-09-07 18:39:49 +00:00
|
|
|
- Add debian checksum
|
2021-08-31 03:54:46 +00:00
|
|
|
|
2021-09-08 04:45:32 +00:00
|
|
|
## [0.17.2] - 2021-08-30
|
2021-08-31 03:54:46 +00:00
|
|
|
### Added
|
|
|
|
- Additional way to distinguish Azure IID and Azure OIDC tokens.
|
|
|
|
### Security
|
|
|
|
- Sign over all goreleaser github artifacts using cosign
|
2021-08-31 17:18:13 +00:00
|
|
|
|
|
|
|
## [0.17.1] - 2021-08-26
|
|
|
|
|
|
|
|
## [0.17.0] - 2021-08-25
|
|
|
|
### Added
|
|
|
|
- Add support for Linked CAs using protocol buffers and gRPC
|
|
|
|
- `step-ca init` adds support for
|
|
|
|
- configuring a StepCAS RA
|
|
|
|
- configuring a Linked CA
|
|
|
|
- congifuring a `step-ca` using Helm
|
|
|
|
### Changed
|
|
|
|
- Update badger driver to use v2 by default
|
|
|
|
- Update TLS cipher suites to include 1.3
|
|
|
|
### Security
|
|
|
|
- Fix key version when SHA512WithRSA is used. There was a typo creating RSA keys with SHA256 digests instead of SHA512.
|