Skip to content
This repository
branch: master

Dec 23, 2013

  1. Josh Cepek

    Add support to change private key passphrases

    Adds the 'set-rsa-pass' and 'set-ec-pass' commands. Both are able to set
    or remove a passphrase, and can optionally act on a direct file path
    instead of a relative filename base name.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  2. Josh Cepek

    Improve docs: add Upgrade-Notes; add online support refs

    Upgrade-Notes includes v2 to v3 upgrade changes that users should be
    aware of.
    
    The updated top-level README helps point users to online support
    locations.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored

Dec 12, 2013

  1. Josh Cepek

    Add build-dist packaging script; update Building docs

    This initial packaging script creates a release-ready tarball for
    Unix-alikes. Windows support will be added in a separate commit.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  2. Josh Cepek

    docs: update Hacking.md with layout & git conventions

    Updates include listing project dir layout, git conventions on
    commits/merges/tags, and code spacing/indent recommendations.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored

Dec 11, 2013

  1. Josh Cepek

    Offload temp file removal to a clean_temp() function

    This simplifies code flow where temp files are used.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  2. Josh Cepek

    Fix incorrect handling of invalid --use-algo option

    The prior warn/fallback to rsa didn't work, and fallback is probably the
    wrong thing to do, especially for batch callers. It is now an error to
    supply an invalid value.
    
    No need to export the EASYRSA_ALGO_PARAMS either.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  3. Josh Cepek

    Fix batch-mode handling with changes in e75ad75

    The --batch CLI arg now takes no options and enables batch-mode when
    present.
    
    init-pki no longer takes a 'force' value which did the same as --batch.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored

Dec 10, 2013

  1. Eric Crist

    refine how booleans are evaluated

    Signed-Off-By: Josh Cepek <josh.cepek@usa.net>
    ecrist authored
  2. Josh Cepek

    Merge PKCS#7 feature from pull req #14

    This adds export support for PKCS#7 bundles, and adds the option to
    export PKCS#12 without private keys
    
    Author: Luiz Angelo Daros de Luca <luizluca@tre-sc.gov.br>
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  3. Josh Cepek

    Modify error message from export_pkcs() to avoid console wrapping

    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  4. - removed unecessary arg check in export_pkcs func

    - Changed expanded tabs (spaces) to normal tabs
    - fixed pkcs12 nokey message
    - changed export dir for pkcs7 to issued
    Luiz Angelo Daros de Luca authored
  5. - added option nokey for pkcs12 to avoid exporting private keys

    - added command export-p7 to export certs using pkcs7 format.
    Luiz Angelo Daros de Luca authored

Dec 08, 2013

  1. Josh Cepek

    Support OpenSSL-0.9.8 with the EXTRA_EXTS feature

    OpenSSL-0.9.8 cannot handle an empty extensions section. This change has
    the dynamic extensions support place the section reference in the
    temporary file at runtime, supporting both 0.9.8 and 1.0.* versions.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored

Dec 01, 2013

  1. Josh Cepek

    Windows: make builds easier by using a matching dir structure

    Now the entire distro/windows/ dir contents can be copied into a staging
    dir during release prep.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  2. Josh Cepek

    Windows: improve external checks and env-var help

    Add test for `cat` external
    
    Fix the env-var to read the correct EASYRSA_OPENSSL name
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  3. Josh Cepek

    Update version strings to prepare for release tag v3.0.0-rc1

    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  4. Josh Cepek

    Add release-keys

    The GPG/PGP keys listed in this file are used to sign official releases
    of Easy-RSA 3. The keys themselves can be downloaded from the many
    public keyserver mirrors.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  5. Josh Cepek

    Add Building info

    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  6. Josh Cepek

    Add Hacking docs

    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  7. Josh Cepek

    Update ChangeLog for ECDSA contribution; clean up formatting

    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored

Nov 25, 2013

  1. Josh Cepek

    Update to ECDSA support from commit 45c27e9

    Add documentation & help output; add quoting; add error messages; put
    the ecparams dir under PKI dir with env-var tunable.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored

Nov 19, 2013

  1. syzzer

    Add ECDSA support

    This commit adds the possibility to specify the algorithm used by openssl
    by adding the --use-algo and --curve parameters.
    
    Signed-off-by: Steffan Karger <steffan@karger.me>
    syzzer authored

Nov 18, 2013

  1. Josh Cepek

    Add initial 3.x codebase files

    This is the initial re-write for the 3.x release series.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored
  2. Josh Cepek

    Remove all 2.x files prior to 3.x codebase drop

    This cleans out the directory tree for the 3.x codebase re-write.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    QueuingKoala authored

Nov 09, 2013

  1. Eric Crist

    update README file to mention new branches

    Signed-off-by: Eric F Crist <ecrist@secure-computing.net>
    ecrist authored

Oct 28, 2013

  1. fredde-fisk

    Invalid "-days" argument to openssl req in pkitool

    fredde-fisk authored

Oct 22, 2013

  1. Eric Crist

    Merge pull request #7 from christophecach/master

    Rather obvious fix, thanks!
    - Fixed installation script from Makefile.am
    ecrist authored

Oct 06, 2013

  1. christophecach

    - Fixed installation script from Makefile.am

    christophecach authored

Jul 05, 2013

  1. Eric Crist

    Merge pull request #3 from ab/master

    Various mostly pointless style edits
    ecrist authored

May 22, 2013

  1. Andy Brody

    Use heredocs rather than an echo every line.

    ab authored
  2. Andy Brody

    Fix up whitespace in 1.0 as well.

    ab authored

May 20, 2013

  1. Andy Brody

    Strip trailing whitespace.

    ab authored
  2. Andy Brody

    Expand tabs.

    ab authored

Jan 30, 2013

  1. Eric Crist

    Change hash and keysize defaults to modern standards

    Change keysize defaults from 1024 to 2048 bits and change the default
    hash from md5 to sha256.  Also, removed an oddly-specific call for sha1
    in one instance.
    
    Signed-off-by: Josh Cepek <josh.cepek@usa.net>
    Signed-off-by: Eric F Crist <ecrist@secure-computing.net>
    ecrist authored

Jul 03, 2012

  1. Nicholas Hall

    Make vars file more sane.

    * Removed duplicate KEY_EMAIL var
    * Commented out KEY_PCS11 vars [1]
    * Commented out KEY_CN with explanation
    * Set saner defaults
    * reorganized vars, "required" fields first
    
    [1] I commented these out because they're already set to dummy and you only need to change them if you're indeed going to use them.  This makes it a little less confusing to newbies who may not be interested in PKCS11 and get confused when reading that they should now "leave any of these fields blank".
    
    Signed-off-by: Eric F Crist <ecrist@secure-computing.net>
    ngharo authored ecrist committed
Something went wrong with that request. Please try again.