easyrsa

Author	SHA1	Message	Date
Eric F Crist	ad49dcff1f	Add support for KDC certificates Closes #322 Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2020-01-11 16:03:04 -06:00
Eric F Crist	c4942d9abe	Merge branch 'kdc' of https://github.com/xavierba/easy-rsa into xavierba-kdc	2020-01-11 16:02:24 -06:00
Eric F Crist	a52aab9638	Update docs, clarify some language. Closes #310 Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2020-01-11 15:56:20 -06:00
Eric F Crist	597d6c0272	Merge branch 'docs' of https://github.com/oliv3r/easy-rsa into oliv3r-docs	2020-01-11 15:55:47 -06:00
Eric F Crist	b2bebf95b6	Update Changelog to mention upgrade script Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2020-01-11 15:41:46 -06:00
Eric F Crist	d91486b4f4	Upgrade script bug fixes Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2020-01-11 15:40:59 -06:00
Eric F Crist	3be7fe6807	Merge branch 'master' of https://github.com/TinCanTech/easy-rsa into TinCanTech-master	2020-01-11 15:38:52 -06:00
Richard Bonhomme	7ccec6e7bc	Add easyrsa-unit-tests to gitignore Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2020-01-11 03:14:04 +00:00
Richard Bonhomme	ef2fc88cf0	Exit function with correct code Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2020-01-11 00:36:51 +00:00
Richard Bonhomme	8cd88a14bb	Inline credentials Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2020-01-10 23:17:30 +00:00
Richard Bonhomme	d28b2edfb0	Ignore serial.old Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2020-01-10 17:08:13 +00:00
Eric F Crist	7e741a5a11	Add upgrade path for EasyRSA Merge branch 'TinCanTech-master' Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2020-01-09 09:02:13 -06:00
Richard Bonhomme	07ec923be1	Easyrsa PKI upgrade Automate upgrading PKI from v2 to v307+ Automate upgrading CA from pre v306 to v307+ Info: https://community.openvpn.net/openvpn/wiki/easyrsa-upgrade Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2020-01-08 16:26:33 +00:00
Eric F Crist	573e3346ea	Merge branch 'TinCanTech-master' Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2020-01-07 12:04:01 -06:00
Richard Bonhomme	00a083e7fc	Correct parameter to easyrsa_openssl in vars_setup Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-12-13 12:12:22 +00:00
Eric F Crist	7f727b791b	Default cert expire down to 825 days * resolves #52 Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-11-25 19:17:46 -06:00
Eric F Crist	f00ab0f85b	Merge branch 'a1346054-master' Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-11-25 17:34:41 -06:00
a1346054	c6dd7ff1f6	Fix typo	2019-11-24 15:41:39 +00:00
a1346054	bd4135b453	Spelling	2019-11-24 15:25:37 +00:00
Eric F Crist	8e862614fa	Failed to add the new op_test.sh script Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-09-25 08:15:04 -05:00
Eric F Crist	1190152c9b	move unit tests to easyrsa-unit-test repo This modifies the op_test.sh script to pull a working copy of the actual unit tests from the easyrsa-unit-test repo. This allows us to update the unit test script outside the easy-rsa repo. A current limitation of the way we've integrated TravisCI is that the repo and tests go hand-in-hand. This means that if a test is broken or otherwise needs an update, it has to come with the PR itself. There's never a point of re-running a TravisCI test, since the test is part of that repo. Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-09-25 08:11:22 -05:00
Eric F Crist	2315b2c186	Merge branch 'TinCanTech-master' Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-09-25 07:29:02 -05:00
Eric F Crist	cb2e4b4e9e	Merge branch 'master' of https://github.com/TinCanTech/easy-rsa into TinCanTech-master	2019-09-25 07:28:44 -05:00
Eric F Crist	124cd31508	Merge branch 'davidrios-master' Fixes #218, corrects name for IP option of SAN Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-09-25 07:27:21 -05:00
Eric F Crist	d0c91e4d38	Merge branch 'master' of https://github.com/davidrios/easy-rsa into davidrios-master	2019-09-25 07:27:01 -05:00
Richard Bonhomme	3f921404d6	Upgrade to 306: Create $EASYRSA_SSL_CONF if required Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-09-23 20:50:53 +01:00
Eric F Crist	8adaf98fa9	Merge branch 'TinCanTech-master' Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-09-20 11:26:01 -05:00
Richard Bonhomme	47eecc48a8	Improve usage text Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-09-20 17:17:46 +01:00
Richard Bonhomme	67bac6c7f1	optest.sh shellcheck compliance Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-09-20 16:57:25 +01:00
David Rios	3301c09f5c	Fix correct name for IP option of subjectAltName	2019-09-19 16:23:07 -03:00
David Rios	e4c9b5ed36	Copy Subject Alternative Name from REQ. Fixes #218	2019-09-19 14:40:45 -03:00
Xavier Bachelot	83962ca5c4	Add support for generating KDC server certificates	2019-08-02 17:52:24 +02:00
Richard Bonhomme	73523b0da3	Expand op_test: Inconsistent SAN behaviour Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-12 21:52:59 +01:00
Richard Bonhomme	57ef07f133	Win32 mktemp help Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com> Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-06-12 14:28:06 -05:00
Richard Bonhomme	e426db231d	Fail with error to create EASYRSA_TEMP_DIR Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-11 01:29:04 +01:00
Richard Bonhomme	ad3b35644d	Fix op_test.sh shellcheck SC2086 Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 23:01:54 +01:00
Richard Bonhomme	939ddc49da	Add required shellcheck to cleanup() Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 22:25:19 +01:00
Richard Bonhomme	70ddded80b	Tidy up op_test.sh verbose Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 21:08:21 +01:00
Richard Bonhomme	0acb8bdd17	Silence shellcheck Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 20:34:28 +01:00
Richard Bonhomme	713f1d633e	Default SAN for serverClient, additional op_test Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 20:13:59 +01:00
Richard Bonhomme	1fa5003081	Work around Windows mktemp bug Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 18:32:47 +01:00
Richard Bonhomme	2dc63cd6fc	Re-instate OPENSSL_CONF and EASYRSA_SAFE_CONF EASYRSA_SAFE_CONF is libressl compatible config file. Create EASYRSA_SAFE_CONF during init-pki, one time per PKI. Set OPENSSL_CONF to be EASYRSA_SAFE_CONF, to prevent bogus warnings. Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 18:21:44 +01:00
Richard Bonhomme	38ad124088	op_test.sh: remove old style custom ssl lib tests Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 17:46:23 +01:00
Richard Bonhomme	c763f3ad28	Improve wop_test.bat Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-10 14:18:29 +01:00
Eric F Crist	81b4ec923d	Clean up wait_sec() Make wait_sec() accept an argument for time so it behaves more like sleep. Merge branch 'TinCanTech-master' Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-06-07 08:56:00 -05:00
Eric F Crist	4af5aecb49	Merge branch 'master' of https://github.com/TinCanTech/easy-rsa into TinCanTech-master	2019-06-07 08:55:45 -05:00
Richard Bonhomme	fbb5e30858	op_test.sh: adhere to shellcheck Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-07 14:51:33 +01:00
Eric F Crist	bf7477f9d5	more typos, thanks xavierb! Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-06-07 08:48:06 -05:00
Eric F Crist	d7b0c781f4	typos in ChangeLog (thanks xavierb) Signed-off-by: Eric F Crist <ecrist@secure-computing.net>	2019-06-07 08:45:35 -05:00
Richard Bonhomme	f6e26cd42c	Improve op_test.sh: make wait_sec variable; Add server with SAN renew test. Signed-off-by: Richard Bonhomme <tincanteksup@gmail.com>	2019-06-07 14:38:38 +01:00

1 2 3 4 5 ...

427 Commits