Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

v3.2.0 Moved #1040

Closed
wants to merge 30 commits into from
Closed

v3.2.0 Moved #1040

wants to merge 30 commits into from

Commits on Oct 18, 2023

  1. Remove prefer_vars_in_pki_msg() 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    8d40587 View commit details
    Browse the repository at this point in the history

  2. Remove $no_new_vars 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    b683db9 View commit details
    Browse the repository at this point in the history

  3. Remove $new_vars_true 

    Allows removal of the 'init-pki' section of 'install_data_to_pki()'.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    67380b3 View commit details
    Browse the repository at this point in the history

  4. Remove $vars, replaced by $EASYRSA_VARS_FILE 

    Only effects upgrade, up23_manage_upgrade_23()

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    cebd958 View commit details
    Browse the repository at this point in the history

  5. Remove $vars_file and $vars_file_example 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    a116b27 View commit details
    Browse the repository at this point in the history

  6. Remove $user_vars_true 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    3ae9c86 View commit details
    Browse the repository at this point in the history

  7. For shellcheck: Add directives to ignore unreachable code 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    a05fa59 View commit details
    Browse the repository at this point in the history

  8. install_data_to_pki(): Downgrade Failure to Warning 

    If the openssl-easyrsa.cnf file fails to copy then try to create it
using create_openssl_easyrsa_cnf(). If creating the file also fails
then that is a fatal error.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    7960b4c View commit details
    Browse the repository at this point in the history

  9. escape_hazard(): Reuse source_vars() 

    This catches misuse of command options for DN.
eg: --dn-mode=org --req-ou="Test backtick: `" build-* foo

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 18, 2023
    Configuration menu
    Copy the full SHA
    5cb462d View commit details
    Browse the repository at this point in the history

Commits on Oct 19, 2023

  1. source_vars(): Use grep efficiently 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 19, 2023
    Configuration menu
    Copy the full SHA
    5f207cd View commit details
    Browse the repository at this point in the history

  2. Standardise function definition syntax 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 19, 2023
    Configuration menu
    Copy the full SHA
    294dace View commit details
    Browse the repository at this point in the history

Commits on Oct 22, 2023

  1. Refactor moving temp-files to target-files 

    Because different commands have different cleanup requirements,
this code reduces the success check to an if-then per command.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 22, 2023
    Configuration menu
    Copy the full SHA
    0d12f4e View commit details
    Browse the repository at this point in the history

  2. Add alias 'show-eku', for original command 'x509-eku' 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 22, 2023
    Configuration menu
    Copy the full SHA
    2733622 View commit details
    Browse the repository at this point in the history

Commits on Oct 25, 2023

  1. x509-eku: Add support for x509-types/code-signing 

    Rewrite command x509-eku to allow easy inclusion for new EKU types.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 25, 2023
    Configuration menu
    Copy the full SHA
    6104c39 View commit details
    Browse the repository at this point in the history

  2. create_x509_type(): Return error, do not die 

    Due to output redirection, errors must only return an error, not use die.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 25, 2023
    Configuration menu
    Copy the full SHA
    f88c08a View commit details
    Browse the repository at this point in the history

  3. clean_up(): Move file-restore tasks before temp-dir removal 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 25, 2023
    Configuration menu
    Copy the full SHA
    5f6111a View commit details
    Browse the repository at this point in the history

  4. renew: On sign-req error, restore files once and clear flag 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 25, 2023
    Configuration menu
    Copy the full SHA
    361ac95 View commit details
    Browse the repository at this point in the history

  5. easyrsa_openssl(), verify_working_env(): Improve verbose messages 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 25, 2023
    Configuration menu
    Copy the full SHA
    607baaf View commit details
    Browse the repository at this point in the history

  6. create_x509_type(): Add type: codeSign 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 25, 2023
    Configuration menu
    Copy the full SHA
    257af50 View commit details
    Browse the repository at this point in the history

Commits on Oct 27, 2023

  1. easyrsa_openssl(): Use 'case' for command selection 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 27, 2023
    Configuration menu
    Copy the full SHA
    d249eeb View commit details
    Browse the repository at this point in the history

  2. ChangeLog: Expand renewable cert-types to include code-signing 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 27, 2023
    Configuration menu
    Copy the full SHA
    6ab01d8 View commit details
    Browse the repository at this point in the history

  3. Merge branch 'remove-unused-code' of ssh://github.com/TinCanTech/easy… 

    …-rsa into v3.2.0

Removed a single extra space char.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 27, 2023
    Configuration menu
    Copy the full SHA
    52bac31 View commit details
    Browse the repository at this point in the history

  4. Merge branch 'escape_hazard_reuse_source_vars' of ssh://github.com/Ti… 

    …nCanTech/easy-rsa into v3.2.0

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 27, 2023
    Configuration menu
    Copy the full SHA
    0eaa5c9 View commit details
    Browse the repository at this point in the history

  5. Merge branch 'x509-eku-v2' of ssh://github.com/TinCanTech/easy-rsa in… 

    …to v3.2.0

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 27, 2023
    Configuration menu
    Copy the full SHA
    bf17a5f View commit details
    Browse the repository at this point in the history

Commits on Oct 29, 2023

  1. sign-req, SAN extention: Move set $san above output command group 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 29, 2023
    Configuration menu
    Copy the full SHA
    f8702fe View commit details
    Browse the repository at this point in the history

  2. sign-req: Simplify code for EASYRSA_EXTRA_EXTS vs auto-SAN 

    EASYRSA_EXTRA_EXTS, as set by command line ALWAYS takes priority.

For a server or serverClient certificate:
If not set then EASYRSA_EXTRA_EXTS is set to a Server-Alt-Name [SAN],
from either the certificate request file or the cerificate commonName.

For all other certificates types, no default SAN is set.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 29, 2023
    Configuration menu
    Copy the full SHA
    de8051a View commit details
    Browse the repository at this point in the history

  3. display-san: Replace '&&' with 'if/then' to avoid hanging error exit 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Oct 29, 2023
    Configuration menu
    Copy the full SHA
    5571aac View commit details
    Browse the repository at this point in the history

Commits on Nov 2, 2023

  1. New diagnostic command 'display-cn' 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Nov 2, 2023
    Configuration menu
    Copy the full SHA
    4fec8a7 View commit details
    Browse the repository at this point in the history

  2. Reorder functions: Move display_dn() above display_san() 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Nov 2, 2023
    Configuration menu
    Copy the full SHA
    4d31728 View commit details
    Browse the repository at this point in the history

  3. display_dn: Remove unwanted variable $name_opts 

    Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
    @TinCanTech
    TinCanTech committed Nov 2, 2023
    Configuration menu
    Copy the full SHA
    16b382f View commit details
    Browse the repository at this point in the history