nik/easyrsa
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
144 Commits 1 Branch 0 Tags 43 MiB
Commit Graph

144 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Eric Crist
f480de2b77 Merge pull request #133 from mschmitt/no-smime 
Default SAN in server certs, serial randomization
 2017-06-30 18:09:53 -05:00
Martin Schmitt
e9e8e272e0 Moved @ValdikSS's serial randomization to sign_req 2017-06-30 17:21:10 +02:00
Martin Schmitt
6436eaf8c1 Add CN as SAN (if none requested) on server certs by default 2017-06-30 16:12:13 +02:00
Olav Reinert
534f673459 Make $PWD/pki the default PKI location 2017-06-05 23:41:14 +02:00
Evan Kinney
f24d6bb8f6 updated buildscript to copy Markdown-ified COPYING doc 2016-12-25 21:35:27 -05:00
Chris Martin
bc51795712 Remove extra space from directory help output 2016-12-13 16:53:14 -05:00
Samuli Seppänen
6ba06da8da Include README.md in dist packages 
Signed-off-by: Samuli Seppänen <samuli@openvpn.net>
 2016-11-16 17:14:21 +02:00
Samuli Seppänen
5ec9af2676 Fix build-dist.sh 
The script had been broken since COPYING was converted to COPYING.md

Signed-off-by: Samuli Seppänen <samuli@openvpn.net>
 2016-11-16 17:08:23 +02:00
Michal Sarna
f5e48887fe Added .gitignore for lazy people that it will skip pki/* and vars 2016-10-10 14:11:33 +02:00
Eric Crist
5a429d22c7 Merge pull request #98 from jtyr/jtyr-fix 
Fix comment indicating the end of the function
 2016-06-29 10:15:15 -05:00
Eric Crist
b8497a3610 Merge pull request #99 from mattock/readme 
Convert README and COPYING into markdown files
 2016-06-29 10:04:19 -05:00
Samuli Seppänen
b75faa475f Convert README and COPYING into markdown files 
Signed-off-by: Samuli Seppänen <samuli@openvpn.net>
 2016-06-22 19:02:23 +03:00
Jiri Tyr
fb4d8d8e26 Fix comment indicating the end of the function 
This patch corrects the comment indicating the end of the `verify_file()` function.
 2016-06-21 14:17:34 +01:00
Eric Crist
b887f3bf1a Merge pull request #92 from websafe/master 
Fixes #91 basename: invalid option -- 's'.
 2016-05-09 17:33:57 -05:00
Eric Crist
de2b5bee95 Merge pull request #96 from drewandersonnz/doc-fixes 
docs: spelling fixes and setence structure improvements
 2016-05-09 17:20:19 -05:00
Drew Anderson
b93d0a1675 spelling fixes and setence structure improvements 2016-05-09 10:24:02 +10:00
Thomas Szteliga
29d4dee508 Fixes #91 basename: invalid option -- 's'. 2016-03-21 17:25:58 +01:00
Eric Crist
f174800136 Merge pull request #87 from ValdikSS/gen-serial 
Generate random serial number for all certificates
 2016-02-29 14:04:14 -06:00
ValdikSS
d309c6aaa2 Generate random serial number for all certificates 2016-02-29 21:30:53 +03:00
Eric F Crist
3ec4f245dd Merge branch 'sskaje-master': Correct bad move operation 2015-10-25 23:01:47 -05:00
Eric F Crist
97a4852c65 Merge branch 'master' of https://github.com/sskaje/easy-rsa into sskaje-master 2015-10-25 22:59:24 -05:00
Eric F Crist
6e643f7224 Corrected output path for zip file in build tool 
Signed-off-by: Eric F Crist <ecrist@secure-computing.net>
 2015-10-25 22:51:55 -05:00
Eric F Crist
d92d29803b Repackaging to include Windows utilities needed. 
In the 3.0.0 release, Windows utilities were mistakenly omitted from the
package.  The build utility has been updated to include these files, as
well as to convert the .md documentation files to html.

Signed-off-by: Eric F Crist <ecrist@secure-computing.net>
 2015-10-25 22:37:17 -05:00
Eric F Crist
21ac0a76bc Use tmp file for gen-crl output 
The mv operation following the CRL creation isn't useful as there is no
temp file to move.  Instead, create the temp file during CRL creation,
preventing a potential overwrite of a previous, valid, CRL.

Thanks go to matteo.guglielmi@epfl.ch for this patch (via email).

Signed-off-by: Eric F Crist <ecrist@secure-computing.net>
 2015-09-09 18:19:22 -05:00
sskaje
02e490f436 Fix Bad move in gen_curl 
Error msg:

Note: using Easy-RSA configuration from: ./vars
Using configuration from /Users/sskaje/Work/CA/Easy/openssl-1.0.cnf
Enter pass phrase for /Users/sskaje/Work/CA/Easy/pki/private/ca.key:
mv: /Users/sskaje/Work/CA/Easy/pki/crl.pem.tpH4U0wpn3: No such file or directory

An updated CRL has been created.
CRL file: /Users/sskaje/Work/CA/Easy/pki/crl.pem
 2015-09-03 20:38:37 +08:00
Eric F Crist
7c1fa0a258 Add GPG key info for Eric Crist 
Signed-off-by: Eric F Crist <ecrist@secure-computing.net>
 2015-09-02 20:01:34 -05:00
Eric F Crist
ed597da0fc Prepare for v3.0.0 release 
* Update ChangeLog to reflect minor last-minute commits.
* Modify build-dist.sh to create both zip and tgz files
* Add notable changes to Upgrade-Notes
 2015-09-02 19:53:04 -05:00
Eric Crist
f2f4ac8eb8 Merge pull request #32 from roubert/utf-8 
Pass the flag -utf8 to openssl to interpret field values as UTF-8.
 2015-09-02 18:40:08 -05:00
Eric Crist
8b42eead58 Merge pull request #61 from keros/change_default_private_key_encryption 
changed default encrpytion algorithmus for keyfiles from des3 to aes256
 2015-09-02 18:33:59 -05:00
Fredrik Roubert
e269c7fa84 Pass the flag -utf8 to openssl to interpret field values as UTF-8. 
By default, field values are interpreted as ASCII but UTF-8 would be a
more reasonable default. Without the -utf8 flag, non-ASCII text gets
garbled without warning. ASCII text works fine either way.
 2015-08-31 13:23:09 +02:00
Eric Crist
cd270b48a2 Merge pull request #66 from ljani/patch-1 
ljani: Fix typo Helllman
 2015-08-30 22:20:54 -05:00
Eric Crist
34b87846ea Merge pull request #26 from luizluca/temp_files_even_simplier 
luizluca: use temp files.  clean up is more stream lined and errors prevent loss of working files.
 2015-08-30 22:20:11 -05:00
Jani
3ab4a07c16 Fix typo: Helllman 2015-07-09 00:18:50 +03:00
keros
3124b41923 changed default encrpytion algorithmus for keyfiles from des3 to aes256 2015-05-13 12:14:05 +00:00
keros
d89231ab2d Revert "changed default encrpytion algorithmus for keyfiles from des3 to aes256" 
This reverts commit cf9e4731b8f2170e529e8b18d64f8f21883ecb85.
 2015-05-13 12:11:31 +00:00
keros
127488692d Revert "added passin and passout option to set-rsa-pass, set-ec-pass and export-p12 to allow passowrd scripting" 
This reverts commit bd8583b9585a2a1ed3d3188b01a89ce6a80ba409.
 2015-05-13 12:11:16 +00:00
keros
8534e06872 Revert "revoked files will be moved to subfolders" 
This reverts commit 550fb40868966bce63e66311c22ee74836eb0efd.
 2015-05-13 12:10:41 +00:00
keros
550fb40868 revoked files will be moved to subfolders 2015-05-13 11:42:47 +00:00
keros
bd8583b958 added passin and passout option to set-rsa-pass, set-ec-pass and export-p12 to allow passowrd scripting 2015-05-13 11:29:42 +00:00
keros
cf9e4731b8 changed default encrpytion algorithmus for keyfiles from des3 to aes256 2015-05-13 10:23:31 +00:00
Josh Cepek
bc586578b4 gen_req() no longer alters the global EXTRA_EXTS variable 
When forming the OpenSSL config replacement text, gen_req() should not
alter the global variable as it is referred to again by sign_req() when
the wrapper-commands build-*-full are called.

This change localizes the replacement text to avoid competing over the
global variable.

Signed-off-by: Josh Cepek <josh.cepek@usa.net>
Based-On: patch submitted by Joe Hu <i@sapika.ch>
Fixes: Issue #25
 2014-12-17 11:47:09 -06:00
Josh Cepek
5c1ca9543d Support LibreSSL by its version output 
The command-line API for LibreSSL is currently identical to OpenSSL
1.0.1.  This support is implemented in a case so any future version
distinctions can key off the features in the available implementation.

Such feature-specific support may become more important during the 3.1
development cycle where 0.9.x OpenSSL cannot handle newer features.

Signed-off-by: Josh Cepek <josh.cepek@usa.net>
Fixes: #48
 2014-12-17 11:32:23 -06:00
allo-
171834dd29 typo: Defualt 2014-09-14 17:50:14 +02:00
Eric Crist
556d77b94f update README to explain what the project does 
fixes #28
 2014-09-08 08:38:09 -04:00
Josh Cepek
2fe709339d Update ChangeLog for release: 3.0.0-rc2 2014-07-27 08:15:26 -05:00
Josh Cepek
1551e5f335 docs: fix typo 2014-07-27 08:02:43 -05:00
Josh Cepek
7ae44b3469 Add KNOWN_ISSUES to stage next -rc release 2014-07-27 07:49:34 -05:00
Josh Cepek
a0d58b2faf Update documentation 2014-07-27 07:24:40 -05:00
Josh Cepek
5758825baa Fix vars.example with proper path to extensions.temp 
Related to issue #24. This does not yet resolve the vars_setup() logic
to assure unmodified variables use defaults rather than empty strings.
 2014-07-27 07:19:49 -05:00
Luiz Angelo Daros de Luca
100d9af333 use temp files to avoid loss of files on error 2014-03-20 14:27:22 -03:00