Skip to content

Releases: TinCanTech/easy-tls

Easy-TLS version 2.7.0

14 Jan 23:51
v2.7.0
e6153d9
Compare
Choose a tag to compare

Version 2.7.0 is the first fully complete feature set release. No further changes are planned.

The Assets found below are not required.

Version 2.6.0

13 Dec 15:54
v2.6.0
28936a4
Compare
Choose a tag to compare

Version 2.6.0 is DOOMED

The first implementation of TLS-Crypt-V2 GROUP keys is cumbersome and inflexible, so it is being changed, slowly.

Please do not create any GROUP keys with this version, instead download easytls over your current v2.6.0 version.

That is the only change required.

Better than that, clone the entire repo!


The original v2.6.0 release follows:

Important changes

  • Introduce easytls-tctip.lib (Optional library)
    Commit f85e95e
    Shared IPv4/6 address functions

  • Introduce TLS-2 Key metadata "source IP" filter
    Commit 343652d
    IPv4/6 Client source IP matching

  • Introduce new Level Security setting for client-connect
    Commit 41e4699
    Help to transition clients to TLS-Crypt-V2 keys

  • Introduce TLS-Crypt-V2 Group Keys
    Commit 9d165c9
    Commit e43542d
    This allows Groups of users to use the same key

  • Add support for Openvpn dynamic client-connect file
    Commit c89cdff
    This alows Openvpn server to push dynamic options

  • Allow multiple Custom_Groups per server
    Commit 3c85741
    This allows clients to be sub-divided by Custom_Group

  • Abandon easytls-verify.sh
    Commit 682ba0f
    Script is no longer required due to UV_TLSKEY_SERIAL

  • Add UV_TLSKEY_SERIAL to be pushed to server
    Commit 5ccdb9f
    All clients using TLS-Crypt-V2 keys must push the
    TLS-Key serial number to identify the key

  • Removed option --openvpn
    Commit cf413bd
    Development only requirement

  • Introduce vars files for server side scripts
    Commit 12dcd3f
    The command line was too long when run under Windows
    due to the extra requirement of loading sh.exe

Easy-TLS v2.5

13 Aug 18:33
v2.5
c0ace6c
Compare
Choose a tag to compare

Version 2.5 is a long term release.

There are no further changes planned. Only bug fixes, as bugs are identified.

To use Easy-TLS, download easytls and easytls-openssl.cnf from the list below.
To use all the features available then down load all the files below.

v2.4

21 Jul 20:34
v2.4
8160cbc
Compare
Choose a tag to compare
Add self-signed certificates to `build` inter-active menu

v2.2

15 Jun 21:29
v2.2
32ccb2d
Compare
Choose a tag to compare

Full support for No-CA mode.

v2.1

23 May 14:01
v2.1
234ced9
Compare
Choose a tag to compare

Introduce No CA Mode.

No CA Mode allows Easy-TLS to function without the need for a CA and full PKI.
This means it can be used to build TLS-Crypt-V2 keys for self-signed certificates.
Usage:
./easyrsa init-pki
./easytls init no-ca
./easytls self-sign-server or self-sign-client to create self-signed certificates.
These can then be used by OpenVPN using Peer-Fingerprint mode.

Easy-TLS version 1.27

31 Mar 14:18
cd52aed
Compare
Choose a tag to compare

First official release.