Accepting request 1058877 from home:polslinux:branches:network:vpn

- Update to 3.1.2: * Command 'renew': Remove option 'nopass' * find_x509_types_dir(): Remove excess checks * Remove function find_x509_types_dir() * For 'init-pki hard' only, always try to create a new pki/vars file * Introduce global option '--notext|--no-text' * Minor style change * Introduce command 'set-pass' * Fix shellcheck warning for command set-pass case statement * cleanup(): Exit correctly for SIGINT * Update help: Standardise output; Improve code; Reprioritise options * vars.example: Add EASYRSA_NO_PASS and wrap long lines * Use 'unset -v', consistently * build-ca: Improve passphrase input mechanism * Remove global options '--verbose' and '--quiet' as not required * Remove all prerequisite code to build a safe SSL config file * Rename temp files to reflect the purpose * easyrsa_openssl(): Always set OPENSSL_CONF to EasyRSA safe SSL config * Replace SSL calls for serial number with function ssl_cert_serial() * Introduce OpenSSL only mode: No Safe SSL Config File * ff_date_to_cert_date(): Correct the input format for busybox date * Re-order easyrsa_openssl() temp-file assignment * Stop EASYRSA_DEBUG interfering with SSL output from subshells * Status reports: Recognise Expired certificates * New function safe_set_var(): Safe wrapper for set_var() * Windows, build-ca: Add input password to re-open private key * Renewal: General code improvements * cleanup(): General improvements - Create KNOWN error exit * build-ca: Change FATAL error to warning for old openssl-easyrsa.cnf * Allow --fix-offset to create post-dated certificates OBS-URL: https://build.opensuse.org/request/show/1058877 OBS-URL: https://build.opensuse.org/package/show/network:vpn/easy-rsa?expand=0&rev=40
2023-01-21 19:23:18 +00:00 · 2023-01-21 19:23:18 +00:00 · 338c455133
commit 338c455133
parent e0ff0ab5ce
7 changed files with 47 additions and 49 deletions
--- a/EasyRSA-3.1.1.tgz
+++ b/EasyRSA-3.1.1.tgz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:779d425cacf1de56262b7a7ed6b90b36e614ce9273f08ad7b86992740cb3b2a5
-size 68434
--- a/EasyRSA-3.1.1.tgz.sig
+++ b/EasyRSA-3.1.1.tgz.sig
--- a/EasyRSA-3.1.2.tgz
+++ b/EasyRSA-3.1.2.tgz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d63cf129490ffd6d8792ede7344806c506c82c32428b5bb609ad97ca6a6e4499
+size 68984
--- a/EasyRSA-3.1.2.tgz.sig
+++ b/EasyRSA-3.1.2.tgz.sig
--- a/easy-rsa.changes
+++ b/easy-rsa.changes
@ -1,3 +1,45 @@
+-------------------------------------------------------------------
+Tue Jan 17 11:06:55 UTC 2023 - Paolo Stivanin <info@paolostivanin.com>
+
+- Update to 3.1.2:
+  * Command 'renew': Remove option 'nopass' 
+  * find_x509_types_dir(): Remove excess checks
+  * Remove function find_x509_types_dir() 
+  * For 'init-pki hard' only, always try to create a new pki/vars file 
+  * Introduce global option '--notext|--no-text' 
+  * Minor style change
+  * Introduce command 'set-pass' 
+  * Fix shellcheck warning for command set-pass case statement 
+  * cleanup(): Exit correctly for SIGINT 
+  * Update help: Standardise output; Improve code; Reprioritise options
+  * vars.example: Add EASYRSA_NO_PASS and wrap long lines
+  * Use 'unset -v', consistently
+  * build-ca: Improve passphrase input mechanism 
+  * Remove global options '--verbose' and '--quiet' as not required
+  * Remove all prerequisite code to build a safe SSL config file
+  * Rename temp files to reflect the purpose 
+  * easyrsa_openssl(): Always set OPENSSL_CONF to EasyRSA safe SSL config 
+  * Replace SSL calls for serial number with function ssl_cert_serial() 
+  * Introduce OpenSSL only mode: No Safe SSL Config File 
+  * ff_date_to_cert_date(): Correct the input format for busybox date 
+  * Re-order easyrsa_openssl() temp-file assignment 
+  * Stop EASYRSA_DEBUG interfering with SSL output from subshells 
+  * Status reports: Recognise Expired certificates 
+  * New function safe_set_var(): Safe wrapper for set_var() 
+  * Windows, build-ca: Add input password to re-open private key 
+  * Renewal: General code improvements 
+  * cleanup(): General improvements - Create KNOWN error exit 
+  * build-ca: Change FATAL error to warning for old openssl-easyrsa.cnf 
+  * Allow --fix-offset to create post-dated certificates 
+  * Default settings: Make default Edwards curve ED25519
+  * cleanup(): Exit with numeric error-code only 
+  * init-pki(): Introduce second warning before HARD removal
+  * build-full: Always enable inline file creation 
+  * Global option '--passout' always take priority ONLY
+  * Status Reports: Set 'LC_TIME=C.UTF-8', only used for reports 
+  * Option --fix-offset: Adjust off-by-one day
+- Drop fix-747.patch
+
 -------------------------------------------------------------------
 Tue Dec 13 23:09:09 UTC 2022 - Olav Reinert <seroton10@gmail.com>

--- a/easy-rsa.spec
+++ b/easy-rsa.spec
@ -1,7 +1,7 @@
 #
 # spec file for package easy-rsa
 #
-# Copyright (c) 2022 SUSE LLC
+# Copyright (c) 2023 SUSE LLC
 # Copyright (c) 2015 Stefan Jakobs.
 #
 # All modifications and additions to the file contributed by third parties
@ -19,7 +19,7 @@

 %define pname   EasyRSA
 Name:           easy-rsa
-Version:        3.1.1
+Version:        3.1.2
 Release:        0
 Summary:        CLI utility to build and manage a PKI CA
 License:        GPL-2.0-or-later
@ -29,7 +29,6 @@ Source:         https://github.com/OpenVPN/%{name}/releases/download/v%{version}
 Source1:        https://github.com/OpenVPN/%{name}/releases/download/v%{version}/%{pname}-%{version}.tgz.sig
 # https://github.com/OpenVPN/easy-rsa/tree/master/release-keys
 Source2:        %{name}.keyring
-Patch1:         fix-747.patch
 Patch100:       suse-packaging.patch
 BuildArch:      noarch

@ -40,7 +39,6 @@ certificates, including sub-CAs, and create Certificate Revokation Lists (CRL).

 %prep
 %setup -q -n %{pname}-%{version}
-%patch1 -p2
 %patch100

 %build
--- a/fix-747.patch
+++ b/fix-747.patch
@ -1,42 +0,0 @@
-commit 4472516e24b068542cfd1ff5c3e51c3b89eb38b1
-Author: Richard T Bonhomme <tincantech@protonmail.com>
-Date:   Mon Oct 31 00:34:42 2022 +0000
-
-    Reset option flag check 'number_only' per option
-    
-    Squashed commit of the following:
-    
-    commit 4aada5ffcd8cff893618bbbfe24f589f33665352
-    Merge: 439cdc1 6f8ba1e
-    Author: Richard T Bonhomme <tincantech@protonmail.com>
-    Date:   Mon Oct 31 00:31:56 2022 +0000
-    
-        Merge branch 'bugfix-number-only' of ssh://github.com/TinCanTech/easy-rsa into TinCanTech-bugfix-number-only
-    
-        Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
-    
-    commit 6f8ba1e608d5223efa9dd296ed2c61418da991aa
-    Author: Richard T Bonhomme <tincantech@protonmail.com>
-    Date:   Sun Oct 30 23:56:46 2022 +0000
-    
-        Reset option flag check 'number_only' per option
-    
-        Closes: #747
-    
-        Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
-    
-    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
-
-diff --git a/easyrsa3/easyrsa b/easyrsa3/easyrsa
-index 6ee8f73..8909977 100755
--- a/easyrsa3/easyrsa
-+++ b/easyrsa3/easyrsa
-@@ -4897,7 +4897,7 @@ unset -v die_error_exit easyrsa_error_exit \
- # Parse options
- while :; do
- 	# Separate option from value:
-	unset -v opt val is_empty empty_ok
-+	unset -v opt val is_empty empty_ok number_only
- 	opt="${1%%=*}"
- 	val="${1#*=}"
-