Permalink
Switch branches/tags
Nothing to show
Commits on Dec 15, 2011
  1. modifications for psych0tik use

    CarbonLifeForm committed Dec 15, 2011
    changed default-days, bits, key usages, basicConstraints, etc.
  2. pushd/popd errors under dash in -exterminate

    CarbonLifeForm committed Dec 15, 2011
    it turns out that popd and pushd are bash enhancements. Replaced popd
    and pushd in -exterminate with a simple pwd/cd + variable solution.
  3. -file -out -key -policy -key -name added -signcert

    CarbonLifeForm committed Dec 15, 2011
    Right. so. There's these modes right? And you want to customize what
    they do right? Well now we've added these new fangled parameters (but
    really quite old, we stole them. ^.^) first there's -file=<file name>,
    this would be your input file. -out=<filename> tells us where to put the
    signed cert. -key=<filename> is a nice way to let the script avoid
    guessing the keyfile from the -name=<prefix> parameter.
    -policy=<section> lets us determine which level of similarity needs to
    be allowed for the approval of the certificate.
Commits on Dec 13, 2011
  1. -signCA got parameters -file -out -name -policy

    CarbonLifeForm committed Dec 13, 2011
    -signCA's behaiviour can now be modified with -file=<filename> to change
    from the default input file, -out=<filename> to move the default output
    filename, -name=<prefix> modifies the default filenames for input and
    output where they are unspecified, -policy=<section> determines which
    policy to use and defaults to policy_anything when unspecified.
Commits on Dec 12, 2011
  1. -ext added to -sign/-signreq

    CarbonLifeForm committed Dec 12, 2011
    Added an extension parameter to the -sign/-signreq in the form of
    -ext=<extension section name>
  2. Added -file -out -policy parameters to -sign(req)

    CarbonLifeForm committed Dec 12, 2011
    for the -sign and -signreq modes
    -file=<file> specifies the signing request
    -out=<file> specifies the file the request should be output to
    -policy=<policy section> specifies which policies it must be bound to
    -name=<name> is a quick prefix that will substitute a filename prefix
    where -file and/or -out have not been specified.
  3. Parameters -name -infile -inkey added to -pkcs12

    CarbonLifeForm committed Dec 12, 2011
    Added -name=<prefix>, -infile=<cert file>, -inkey <key file> parameters
    while still allowing the title parameter.
Commits on Dec 11, 2011
  1. Eliminated leftover development debug lines.

    CarbonLifeForm committed Dec 11, 2011
    There were several development debug statements left in the is_mode()
    function. This commit removes those debug statements.
  2. Added -file and -policy to -xsign

    CarbonLifeForm committed Dec 11, 2011
    This commit contains code to give the -xsign mode paramters to specify
    which policy section to use with -policy=<section name> and which files
    to sign with -file=<filename>, the latter can be specified multiple
    times.
Commits on Dec 10, 2011
  1. Added key/cert and key/req pair naming.

    CarbonLifeForm committed Dec 10, 2011
    Added code to allow customization of the filenames for the certificate,
    request, and key. filenames will default to newkey.pem and newreq.pem
    but can have the prefix 'new' substituted with a value specified by
    -name=<string>
Commits on Dec 9, 2011
  1. refactored -newreq and -newreq-nodes into one

    CarbonLifeForm committed Dec 9, 2011
    the -newreq and -newreq-nodes were combined into one mode due to their
    similarity and nearly identical code. There may be a -nodes parameter
    for them eventually but it will maintain backward compatibility.
    
    the -newreq and -newreq-nodes had code so similar that
  2. Paramters added to -newreq and -newreq-nodes

    CarbonLifeForm committed Dec 9, 2011
    Added -bits, -days, and -extensions to both the
    -newreq and -newreq-nodes. I am contemplating merging these two commands
    into one at the moment.
  3. Parameters added to -newcert mode

    CarbonLifeForm committed Dec 9, 2011
    Added -bits -days and -extensions to the -newcert mode
  4. Sub options for CA.sh modes added.

    CarbonLifeForm committed Dec 9, 2011
    Methods and infrastructure for parsing parameters for CA management
    commands added. Specifically added a function is_mode() to determine
    whether the next parameter is a command/mode or a parameter for a mode.
    Also the following modes were added for -newca: -bits=<number>,
    -days=<number> and -extensions=<cert extension section name>
Commits on Dec 7, 2011
Commits on Dec 2, 2011
Commits on Nov 29, 2011
  1. fixed exterminate bug, added verbosity to catchall

    CarbonLifeForm committed Nov 29, 2011
    Neglected to add a ;; to the end of exterminate, fixed
    
    Added verbosity to the catchall *) case, now prints out full commandline as
    well.
  2. Added -exterminate to remove the CA.

    CarbonLifeForm committed Nov 29, 2011
    Cleanup command helpful for development. Do not use unless the CA is
    irrelevant.
Commits on Nov 28, 2011
  1. Amended detection of proper CA key generation.

    CarbonLifeForm committed Nov 28, 2011
    openssl returns 0 even when CA key genration/passwording fails. A
    file exists at the proper location but has zero length. Detecting the
    length of private/cakey.pem to be nonzero is sufficient to verify that
    the key was properly generated and saved.
  2. Merge branch 'mergeme'

    CarbonLifeForm committed Nov 28, 2011
Commits on Nov 6, 2011
  1. Added debug verboseness to CA initialization. Added logic to

    CarbonLifeForm committed Nov 6, 2011
    SSLEAY_CONFIG detection
Commits on Oct 27, 2011
  1. Added foundation files. Openssl.cnf and CA.sh. Hopefully these will

    CarbonLifeForm committed Oct 27, 2011
    evolve into something useful.