This document is aimed at programmers looking to improve on the existing codebase.
The easyrsa
code is written in POSIX shell (and any cases where it is not is
considered a bug to be fixed.) The only exceptions are the local
keyword and
the construct export FOO=baz
, both well-supported.
As such, modifications to the code should also be POSIX; platform-specific code
should be placed under the distro/
dir and listed by target platform.
While there aren't strict syntax standards associated with the project, please follow the existing format and flow when possible; however, specific exceptions can be made if there is a significant reason or benefit.
Do try to:
- Keep variables locally-scoped when possible
- Comment sections of code for readability
- Use the conventions for prefixes on global variables
- Set editors for tab stops of 8 spaces
- Use tabs for code indents; use aligned spaces for console text
Changes that adjust, add, or remove features should have relevant docs, help output, and examples updated at the same time.
A point-release bump (eg: 3.0 to 3.1) is required when the frontend interface changes in a non-backwards compatible way. Always assume someone has an automated process that relies on the current functionality for official (non-beta, non-rc) releases. A possible exception exists for bugfixes that do break backwards-compatibility; caution is to be used in such cases.
The addition of a new command may or may not require a point-release depending on the significance of the feature; the same holds true for additional optional arguments to commands.
The project's files are structured as follows:
easyrsa3/
is the primary project code. On Linux/Unix-alikes, all the core code and supporting files are stored here.Licensing/
is for license docs.build/
is for build information and scripts.contrib/
is for externally-contributed files, such as useful external scripts or interfaces for other systems/languages.distro/
is for distro-specific supporting files, such as the Windows frontend wrappers. Code components that are not platform-neutral should go here.doc/
is for documentation. Much of this is in Markdown format which can be easily converted to HTML for easy viewing under Windows.release-keys/
list current and former KeyIDs used to sign release packages (not necessarily git tags) available for download.- The top-level dir includes files for basic project info and reference appropriate locations for more detail.
As a brief note, it is actually possible to take just the easyrsa3/ dir and end up with a functional project; the remaining structure includes docs, build prep, distro-specific wrappers, and contributed files.
As of Easy-RSA 3, the following git conventions should be used. These are mostly useful for people with repo access in order to keep a standard meaning to commit messages and merge actions.
Committers with push access should ensure a Signed-off-by:
line exists at
the end of the commit message with their name on it. This indicates that the
committer has reviewed the changes to the commit in question and approve of
the feature and code in question. It also helps verify the code came from an
acceptable source that won't cause issues with the license.
This can be automatically added by git using git commit -s
.
Additional references can be included as well. If multiple people reviewed the
change, the committer may add their names in additional Signed-off-by:
lines; do get permission from that person before using their name, however ;)
The following references may be useful as well:
Signed-off-by:
-- discussed above, indicates review of the commitAuthor:
-- references an author of a particular feature, in full or significant partChanges-by:
-- indicates the listed party contributed changes or modifications to a featureAcked-by:
-- indicates review of the feature, code, and/or functional correctness
Contributions can come in many forms: GitHub "pull requests" from cloned
repos, references to external repos, patches to the ML, or others. Those won't
necessarily have Signed-off-by:
lines or may contain less info in the commit
message than is desirable to explain the changes.
The committing author to this project should make a merge-commit in this case with the appropriate details provided there. If additional code changes are necessary, this can be done on a local branch prior to merging back into the mainline branch.
This merge-commit should list involved contributors with Author:
or similar
lines as required. The individual commits involved in a merge also retain the
original committer; regardless, the merge-commit message should give a clear
indication of what the entire set of commits does as a whole.
Tags should follow the convention:
vM.m.p
where M
is the major version, m
is the minor "point-release" version, and
p
is the patch-level. Suffixes of -rc#
, -beta#
, etc can be added for
pre-release versions as required.
Currently tags are taken from the mainline development branch in question. The
ChangeLog should thus be updated prior to tagging. Tags should also be
annotated with an appropriate commit message and signed-off. This can be done
as shown below (don't use -s
unless you intend to use GPG with git.)
git tag -a v1.2.3
Corresponding release downloads can be uploaded to release distribution points as required.