summaryrefslogtreecommitdiff
path: root/security/easy-rsa
AgeCommit message (Collapse)AuthorFilesLines
2021-10-26security: Replace RMD160 checksums with BLAKE2s checksumsnia1-2/+2
All checksums have been double-checked against existing RMD160 and SHA512 hashes Unfetchable distfiles (fetched conditionally?): ./security/cyrus-sasl/distinfo cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
2021-10-07security: Remove SHA1 hashes for distfilesnia1-2/+1
2020-11-17easy-rsa: updated to 3.0.8adam2-7/+7
3.0.8 (2020-09-09) * Provide --version option * Version information now within generated certificates like on *nix * Fixed issue where gen-dh overwrote existing files without warning * Fixed issue with ED/EC certificates were still signed by RSA * Added support for export-p8 * Clarified error message * 2->3 upgrade now errors and prints message when vars isn't found * Update OpenSSL Windows binaries to 1.1.1g
2020-04-03easy-rsa: updated to 3.0.7adam2-8/+8
3.0.7: Include OpenSSL libs and binary for Windows 1.1.0j Remove RANDFILE environment variable Workaround for bug in win32 mktemp Handle IP address in SAN and renewals Workaround for ash and no set -o echo Shore up windows testing framework Provide upgrade mechanism for older versions of EasyRSA Add support for KDC certificates Add support for Edward Curves Add support for EASYRSA_PASSIN and EASYRSA_PASSOUT env vars Add support for RID to SAN
2019-02-06easy-rsa: updated to 3.0.6adam2-9/+9
3.0.6: Certifcates that are revoked now move to a revoked subdirectory EasyRSA no longer clobbers non-EASYRSA environment variables More sane string checking, allowingn for commas in CN Support for reasonCode in CRL Better handling for capturing passphrases Improved LibreSSL/MacOS support Adds support to renew certificates up to 30 days before expiration This changes previous behavior allowing for certificate creation using duplicate CNs.
2018-10-11easy-rsa: updated to 3.0.5adam3-13/+15
3.0.5: Fix: use AES256 for CA key Also, don't use read -s, use stty -echo Fix broken "nopass" option Add -r to read to stop errors reported by shellcheck (and to behave) remove overzealous quotes around $pkcs_opts (more SC errors) Support for LibreSSL (now works on latest version of MacOS) EasyRSA version will be reported in certificate comments Client certificates now expire in 3 year (1080 days) by default
2018-07-04*: Move SUBST_STAGE from post-patch to pre-configurejperkin1-2/+2
Performing substitutions during post-patch breaks tools such as mkpatches, making it very difficult to regenerate correct patches after making changes, and often leading to substituted string replacements being committed.
2018-06-24easy-rsa: downgraded to 3.0.4 (3.0.5 has not been released)adam6-56/+66
2018-01-30Updated security/easy-rsa to 3.0.5mef3-11/+10
3.0.5 * Fix #17 & #58: use AES256 for CA key * Also, don't use read -s, use stty -echo 3.0.4 * Remove use of egrep (#154) * Integrate with Travis-CI (#165) * Remove "local" from variable assignment (#165) * Other changes related to Travis-CI fixes * Assign values to variables defined previously w/local * Finally(?) fix the subjectAltName issues I presented earlier (really fixes #168
2018-01-15set sane default location for config filejnemeth3-2/+25
2017-12-04easy-rsa: remove DIST_SUBDIR, not necessarywiz2-9/+6
2017-12-04Fix version number. Since this is brand new and didn't create ajnemeth2-8/+8
proper package, don't bother with PKGREVISION bump.
2017-12-04Import easy-rsa 3.0.3.jnemeth4-0/+80
This is a shell script to aid with creating a Certificate Authority and certificates for use with an OpenVPN server. See http://openvpn.net/howto.html for usage instructions along with the documentation provided in this package.
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-05 17:51:52 +0000