Skip to content

v2.0.0
Compare
Choose a tag to compare
@jessepeterson jessepeterson released this 25 Mar 20:44
· 28 commits to main since this release
v2.0.0
d836799

Three years in the making! micromdm/scep v2.0.0 release.

So much has changed. As just one example we've gone through three different Go dependency systems (Glide, dep, and finally Go modules) since the last release. So I'll try and highlight just some of bigger changes since then. Not all of this is particularly new — indeed some projects have been using newer commit hashes than the last v1.0.0 tag. At any rate:

Feature/functionality related

  • Full GET & POST support for PKIOperation (#43, #114)
  • New CA fingerprint flag for selecting amongst multiple CAs (i.e. for NDES) (#43)
    • scepclient fingerprint expects SHA-256 hashes now (formerly MD5) (#160)
  • Support signing and re-signing CSRs (to support embedding the challenge attribute) (#45)
  • New dynamic one-time challenge password support (#50)
  • Complete bolt Depot implementataion (HasCN) (e6079f0, #30)
  • SCEPStandard capability (#51)
  • New CSR verifier flag to scepserver that shells-out: -csrverifierexec (#68)
  • CA certificate is now generated with CRL signing key usage (#69)
  • New switch to specify OU for CA cert in scepserver (#82)
  • Set a default CN for new CA certs (#89)
  • Copy attributes from CSR SANs to new cert template (#107, #121)
  • Accept ECDSA keys in SCEP core module (#109)
  • New scepserver Pluggable CSR signing framework (#113)
  • Populate the server's CertRep with CA certificates before verifying (#131)
  • New CertsSelector interface for selecting which certificates a CA returns (#147)
  • Remove SHA-1 (and MD5, etc.) support for signing (and re-signing) CSRs for challenges in (#144)
  • Send Content-type: application/octet-stream header with PKIOperation (#146)
  • Support Message parameter for GetCACert (#152)
  • scepclient can now print CA certificates (and hashes) with debug output (#157)

Other changes

  • Module is now named github.com/micromdm/scep/v2. Update your import paths!
  • Various logging & error handling improvements
  • Various bug fixes
  • Makefile and build changes (#151)
  • Various iterations of Dockerfile changes (#33, #74, #83, c892534)
  • Glide->dep->go modules
  • Various PKCS7 library dependency changes ending up (currently) with a fork of Mozilla's fork of Fullsailor's PKCS7 library. (#38, #116, #128)
Assets 8
Loading