diff --git a/CHANGELOG.rst b/CHANGELOG.rst index ad22c9c4..db90ce5e 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -5,6 +5,21 @@ Community Crypto Release Notes .. contents:: Topics +v1.9.24 +======= + +Release Summary +--------------- + +Bugfix release. + +Bugfixes +-------- + +- openssl_dhparam - was using an internal function instead of the public API to load DH param files when using the ``cryptography`` backend. The internal function was removed in cryptography 42.0.0. The module now uses the public API, which has been available since support for DH params was added to cryptography (https://github.com/ansible-collections/community.crypto/pull/698). +- openssl_privatekey_info - ``check_consistency=true`` no longer works for RSA keys with cryptography 42.0.0+ (https://github.com/ansible-collections/community.crypto/pull/701). +- x509_certificate - when using the PyOpenSSL backend with ``provider=assertonly``, better handle unexpected errors when validating private keys (https://github.com/ansible-collections/community.crypto/pull/704). + v1.9.23 ======= diff --git a/changelogs/changelog.yaml b/changelogs/changelog.yaml index 5dc37064..4222ef4c 100644 --- a/changelogs/changelog.yaml +++ b/changelogs/changelog.yaml @@ -722,6 +722,25 @@ releases: - 1.9.23.yml - pkcs12.yml release_date: '2023-10-29' + 1.9.24: + changes: + bugfixes: + - openssl_dhparam - was using an internal function instead of the public API + to load DH param files when using the ``cryptography`` backend. The internal + function was removed in cryptography 42.0.0. The module now uses the public + API, which has been available since support for DH params was added to cryptography + (https://github.com/ansible-collections/community.crypto/pull/698). + - openssl_privatekey_info - ``check_consistency=true`` no longer works for RSA + keys with cryptography 42.0.0+ (https://github.com/ansible-collections/community.crypto/pull/701). + - x509_certificate - when using the PyOpenSSL backend with ``provider=assertonly``, + better handle unexpected errors when validating private keys (https://github.com/ansible-collections/community.crypto/pull/704). + release_summary: Bugfix release. + fragments: + - 1.9.24.yml + - 698-openssl_dhparam-cryptography.yml + - 701-private_key_info-consistency.yml + - 704-x509_certificate-assertonly-privatekey.yml + release_date: '2024-01-27' 1.9.3: changes: bugfixes: diff --git a/changelogs/fragments/1.9.24.yml b/changelogs/fragments/1.9.24.yml deleted file mode 100644 index a14fc0bf..00000000 --- a/changelogs/fragments/1.9.24.yml +++ /dev/null @@ -1 +0,0 @@ -release_summary: Bugfix release. \ No newline at end of file diff --git a/changelogs/fragments/698-openssl_dhparam-cryptography.yml b/changelogs/fragments/698-openssl_dhparam-cryptography.yml deleted file mode 100644 index ad937da8..00000000 --- a/changelogs/fragments/698-openssl_dhparam-cryptography.yml +++ /dev/null @@ -1,4 +0,0 @@ -bugfixes: - - "openssl_dhparam - was using an internal function instead of the public API to load DH param files when using the ``cryptography`` backend. - The internal function was removed in cryptography 42.0.0. The module now uses the public API, which has been available since support for - DH params was added to cryptography (https://github.com/ansible-collections/community.crypto/pull/698)." diff --git a/changelogs/fragments/701-private_key_info-consistency.yml b/changelogs/fragments/701-private_key_info-consistency.yml deleted file mode 100644 index fe920423..00000000 --- a/changelogs/fragments/701-private_key_info-consistency.yml +++ /dev/null @@ -1,2 +0,0 @@ -bugfixes: - - "openssl_privatekey_info - ``check_consistency=true`` no longer works for RSA keys with cryptography 42.0.0+ (https://github.com/ansible-collections/community.crypto/pull/701)." diff --git a/changelogs/fragments/704-x509_certificate-assertonly-privatekey.yml b/changelogs/fragments/704-x509_certificate-assertonly-privatekey.yml deleted file mode 100644 index 3cd09730..00000000 --- a/changelogs/fragments/704-x509_certificate-assertonly-privatekey.yml +++ /dev/null @@ -1,2 +0,0 @@ -bugfixes: - - "x509_certificate - when using the PyOpenSSL backend with ``provider=assertonly``, better handle unexpected errors when validating private keys (https://github.com/ansible-collections/community.crypto/pull/704)."