Commit graph

77 commits

Author SHA1 Message Date
30ef252ff5 Fix ${CRL} and ${CA_DIR} rights so that CRL file can be read by openvpn 2022-12-13 17:41:31 +01:00
7382947fc3 Release 22.12 2022-12-01 16:50:41 +01:00
3b3e0b01bf Merge branch 'openssl-pkey' into dev 2022-09-06 14:29:30 +02:00
34b53e63f2 The key file can be read and written only by the owner 2022-08-31 11:35:12 +02:00
Brice Waegeneire
f58712f2b3 create index.txt.attr file 2022-07-11 11:09:37 +02:00
992fde0930 Precising that the --end-date hour is in UTC +0 2022-04-14 15:53:59 +02:00
6165ccec6c Generate CRL only if (re)generating CA 2022-04-14 15:51:07 +02:00
55e02c6a13 Check if CN already exists only after having asked for user password
Otherwise, with "-p", "--replace-existing" and "--non-interactive", with
CA_PASSWORD set but PASSWORD unset, the existing certificate was revoked but
the new one could'nt be created. Now, PASSWORD must be set or the exisiting
certificate won't be revoked
2022-04-14 15:18:57 +02:00
ba2f553ef4 Do not use --password and --password-file together 2022-04-14 15:01:09 +02:00
Mathieu Trossevin
38aac7b137
Use genpkey and pkey instead of genrsa and rsa
genrsa and rsa are being deprecated by OpenSSL and both genpkey and pkey
provides the same functionalities as genrsa and rsa will being more
configurable.
2022-04-06 11:40:17 +02:00
97f1affa1b Create crl file after init of PKI 2022-04-04 18:13:37 +02:00
14a65fa42d Change SUFFIX to use human readable date instead of epoch 2022-04-04 17:55:37 +02:00
c76b7a02ca Split show_usage for each subcommand, add --version and --help in addition to version and help, update VERSION 2022-04-04 17:37:20 +02:00
1fa4ff205e Parse date in ISO format rather than US format 2022-04-04 17:01:19 +02:00
554f6166c9 Forget to delete a debug line 2022-03-29 18:59:09 +02:00
85c3324713 Update Copyright 2022-03-29 18:48:45 +02:00
9f13a42355 Handle the case where --days argument is not a number or a negative one
Before this test, the error was displayed but ignored and the certificate was
still created depending on the default_days value in openssl.cnf
2022-03-29 18:42:28 +02:00
abf6fb131c Do not use --end-date and --days together 2022-03-29 18:20:16 +02:00
191ba257d9 Fix parsing options when no option is given 2022-03-29 18:19:33 +02:00
e42af2183c Fix --non-interactive behavior: there were still some prompts to the user 2022-03-29 18:18:01 +02:00
a640892ecb Syntax: no space before ":" 2022-03-29 18:17:03 +02:00
6d71a5a177 Fix end-date format depending on system 2022-03-29 18:15:57 +02:00
047c6e334a Improve README and show_usage 2022-03-29 18:10:47 +02:00
d0c6a55538 README file and show_usage function : replace "cert" with "certificate" 2022-03-22 18:08:57 +01:00
da7809f3c0 Update README file and show_usage function : forgotten information 2022-03-22 18:04:03 +01:00
4a2e5c93f1 Update README file and show_usage function 2022-03-22 18:01:22 +01:00
d48dc132be fix replace-existing and non-interactive confict 2022-03-14 14:40:50 +01:00
69db5a80aa More conventional "list" parsing 2022-03-14 11:03:36 +01:00
4bb24707b0 simplify "list" options parsing 2022-03-11 14:10:53 +01:00
10edbb19fa init can be "non-interactive" 2022-03-11 14:10:32 +01:00
6cc29fb1f8 reorder functions 2022-03-11 14:09:58 +01:00
68e4648694 fix shellcheck violations 2022-03-11 11:44:09 +01:00
41d0ca261d extract get_real_path function to normalize readlink arguments 2022-03-11 11:38:01 +01:00
593cf4a9f3 show usage if list has no argument, instead of "set -u" error 2022-03-11 11:36:20 +01:00
9f3b0a4cd4 list: better options parsing 2020-10-12 23:49:51 +02:00
83d0ef2449 "shellpki revoke" can be run interactively or not 2020-10-12 23:38:32 +02:00
c83f210387 default values for variables in tests 2020-10-12 23:27:24 +02:00
75e36189c5 "shellpki init" can be executed interactively or not 2020-10-12 23:27:05 +02:00
a6c153b546 Copy files if destination exists 2020-05-06 00:40:36 +02:00
99e5b8a386 whitespace 2020-05-06 00:39:39 +02:00
fdb9f46e35 Display key file path on success 2020-05-06 00:39:23 +02:00
ab4e3e5de1 Rename --revoke-existing to --replace-existing 2020-05-06 00:38:57 +02:00
123d5f5c05 split lines 2020-05-06 00:00:00 +02:00
6bb05a6366 Add --revoke-existing command line option 2020-05-05 23:50:04 +02:00
1c4b68f571 Use error() and warning() functions in options parsing 2020-05-05 23:49:10 +02:00
3e2bbe8de5 lowercase variable 2020-05-05 23:20:54 +02:00
e04f686651 Prevent use of uninitialized variables 2020-05-05 23:20:36 +02:00
f94f7d8cd3 Add --non-interactive command line option 2020-05-05 23:19:29 +02:00
0c4d36cb57 improve error display 2020-05-05 15:24:06 +02:00
d9f866fc3a typo 2020-05-05 15:06:15 +02:00