Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

v3.2.0 Moved #1040

Closed
wants to merge 30 commits into from
Closed

v3.2.0 Moved #1040

wants to merge 30 commits into from

Conversation

TinCanTech
Copy link
Collaborator

@TinCanTech TinCanTech commented Oct 29, 2023

Follow-up: #1041

CLOSED

Signed-off-by: Richard T Bonhomme <[email protected]>
Signed-off-by: Richard T Bonhomme <[email protected]>
Allows removal of the 'init-pki' section of 'install_data_to_pki()'.

Signed-off-by: Richard T Bonhomme <[email protected]>
Only effects upgrade, up23_manage_upgrade_23()

Signed-off-by: Richard T Bonhomme <[email protected]>
Signed-off-by: Richard T Bonhomme <[email protected]>
If the openssl-easyrsa.cnf file fails to copy then try to create it
using create_openssl_easyrsa_cnf(). If creating the file also fails
then that is a fatal error.

Signed-off-by: Richard T Bonhomme <[email protected]>
This catches misuse of command options for DN.
eg: --dn-mode=org --req-ou="Test backtick: `" build-* foo

Signed-off-by: Richard T Bonhomme <[email protected]>
Signed-off-by: Richard T Bonhomme <[email protected]>
Signed-off-by: Richard T Bonhomme <[email protected]>
Because different commands have different cleanup requirements,
this code reduces the success check to an if-then per command.

Signed-off-by: Richard T Bonhomme <[email protected]>
Rewrite command x509-eku to allow easy inclusion for new EKU types.

Signed-off-by: Richard T Bonhomme <[email protected]>
Due to output redirection, errors must only return an error, not use die.

Signed-off-by: Richard T Bonhomme <[email protected]>
Signed-off-by: Richard T Bonhomme <[email protected]>
…-rsa into v3.2.0

Removed a single extra space char.

Signed-off-by: Richard T Bonhomme <[email protected]>
…nCanTech/easy-rsa into v3.2.0

Signed-off-by: Richard T Bonhomme <[email protected]>
EASYRSA_EXTRA_EXTS, as set by command line ALWAYS takes priority.

For a server or serverClient certificate:
If not set then EASYRSA_EXTRA_EXTS is set to a Server-Alt-Name [SAN],
from either the certificate request file or the cerificate commonName.

For all other certificates types, no default SAN is set.

Signed-off-by: Richard T Bonhomme <[email protected]>
@TinCanTech TinCanTech changed the title V3.2.0 v3.2.0 alpha-1 Oct 30, 2023
@TinCanTech TinCanTech added this to the v3.2.0 milestone Oct 30, 2023
@TinCanTech TinCanTech self-assigned this Nov 2, 2023
@TinCanTech TinCanTech linked an issue Nov 2, 2023 that may be closed by this pull request
@TinCanTech TinCanTech closed this Nov 8, 2023
@TinCanTech TinCanTech deleted the v3.2.0 branch November 8, 2023 01:32
@TinCanTech TinCanTech changed the title v3.2.0 alpha-1 v3.2.0 moved to #1041 Nov 8, 2023
@TinCanTech TinCanTech changed the title v3.2.0 moved to #1041 v3.2.0 Moved Nov 8, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Provide renew command for all supported X509 certificate types
1 participant