rpms
/
crypto-utils
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
193 Commits 26 Branches 84 Tags 288 KiB
Commit Graph

38 Commits

Author SHA1 Message Date
Joe Orton 2c2d861055 fix typos (Josh Soref) 
certwatch --keydbprefix argument renamed from --keydbprexix
 2017-08-23 09:14:09 +01:00
Joe Orton a2aaef550c keyutil, genkey: use SHA-2 hashes by default for certs (#1062444) 
Resolves: rhbz#1062444
 2014-09-02 16:27:03 +01:00
Joe Orton d4556f5002 genkey: only fail if --nss is specified and mod_nss is absent (#845942) 
Resolves: rhbz#845942
 2014-02-13 23:02:09 +00:00
Joe Orton abc69c0f6c genkey: skip temporary cert generation for CSR case 2014-02-13 13:02:36 +00:00
Joe Orton 7731df4cd6 genkey: fix noise file handling 2014-02-13 12:26:37 +00:00
Joe Orton 3c5bc63a88 genkey: escape passwords properly (#980859) 
- genkey: escape commas in subject (#803305)
- keyutil: fix crashes when printing errors (#1045354)
- drop requirement on mod_ssl/mod_nss again (#1057858)
Resolves: rhbz#1057858
Resolves: rhbz#1045354
Resolves: rhbz#803305
Resolves: rhbz#980859
 2014-01-27 12:11:39 +00:00
Joe Orton c9e79dd4a6 genkey: further tweaks to wording around key sizes 
Resolves: rhbz#986788
 2014-01-22 16:39:08 +00:00
Joe Orton 900400f9a8 keyutil: use SHA1 as default hash in created certs (#921117) 
- genkey: default to 2048 bit keysize (#986788)
Resolves: rhbz#986788
Resolves: rhbz#921117
 2014-01-22 14:32:59 +00:00
Elio Maldonado dd95a2c5bc Resolves: rhbz#862430 - CVE-2012-3504 - insecure temporary file usage in genkey 2013-02-23 11:09:12 -08:00
Elio Maldonado 7245f960f1 Fix genkey to output CSRs, certs and keys in ascii PEM format (#526720) 2009-10-01 22:32:39 +00:00
Elio Maldonado b01625a788 Bug 162116: Fix cert suffix to be .crt as Apache expects it 2009-05-20 15:53:54 +00:00
Elio Maldonado e26ddee390 Fix ca keyfile name extension 2009-01-29 22:19:22 +00:00
Elio Maldonado 48d47baf5b fix ca key file name 2009-01-05 16:35:34 +00:00
Elio Maldonado e54802e608 fix server key name extension 2008-12-29 00:51:01 +00:00
Elio Maldonado 13582087e9 restored open parenthesis 2008-11-04 05:47:23 +00:00
Elio Maldonado 5701962a6d Pass acess passwords to keutil using specially formatted file and key 
encryption password via command line, no need to save the cert to a
    file on makeca
 2008-11-04 04:15:39 +00:00
Elio Maldonado 62a0a5d953 Enable nss cert renewal and disable the pem one 2008-10-26 23:34:27 +00:00
Elio Maldonado b865686c40 Added support for CA cert renewal when in openssl compatibilty mode 2008-10-19 05:10:10 +00:00
Elio Maldonado d33501a69b Disabled cert renewal for certs on the database until a patch for certutil 
comes downstream
 2008-10-11 19:43:38 +00:00
Elio Maldonado 34eebe288b Tidy up indentation 2008-10-01 22:42:15 +00:00
Elio Maldonado 054411e9e5 Added support for true cert renewal, depends on recent upstream patch to 
certutil targeted for nss 3.12.2, will patch downstream for now.
 2008-10-01 21:31:14 +00:00
Elio Maldonado 6258de8a50 Updated copyright date, fixed override_key, moved test for key exist after 
setting of mod_nss variables, removed duplicate window, clear err
    before invoking command
 2008-05-27 16:29:54 +00:00
Elio Maldonado 9fd9769128 Ensure that either mod_nss or mod_ssl is installed for the type of request 
to be processed (#346731)
 2008-05-11 02:47:51 +00:00
Elio Maldonado 028628ad36 Ensure nickname isn't empty and restore support for skip_random (#346731) 2008-05-07 18:48:17 +00:00
Elio Maldonado cac33323d6 Support module access password, use chmp to eliminate unwanted newlines, 
remove debug option (#346731)
 2008-05-07 04:19:26 +00:00
Elio Maldonado 07e43ba2ef Thou shall not invoke openssl 2008-05-06 20:02:27 +00:00
Elio Maldonado e8c5e7132c No skip_random, removed spurious window, support nss database prefix, and 
fix some messages
 2008-05-05 23:52:19 +00:00
Elio Maldonado 87b048dea4 no key encryption password needed when using nss database 2008-05-03 22:58:40 +00:00
Elio Maldonado deb8b0e9e2 Synch. with keyutil.c: -f for module acces password and -e for key 
encryption password (#346731)
 2008-05-02 23:48:28 +00:00
Elio Maldonado f65b51384d Use nss library for cryptography (#346731) 2008-05-01 01:25:10 +00:00
jorton 4fd11f134a - genkey: wording fix 2007-10-30 16:15:10 +00:00
jorton 1f6c608958 - genkey: skip the CA selection dialog; the CA-specific instructions are 
all out-of-date
- man page updates, add man page for keyrand
 2007-10-24 14:03:17 +00:00
jorton 2b6c5fb50e - fix certwatch -p too 
- clarify License; package license texts
 2007-08-23 10:11:54 +00:00
jorton 88c57d5f74 - genkey: create private key files with permissions 0400 
- genkey: tidy up error handling a little
 2005-04-27 12:39:28 +00:00
jorton fd98acbcc3 - adapt to use /etc/pki 2005-04-25 14:44:40 +00:00
jorton dea5e1462d - certwatch: prevent warnings for duplicate certs (#103807) 
- make /etc/cron.daily/certwatch 0755 (#141003)
- add genkey(1) man page (#134821)
 2005-02-15 16:30:01 +00:00
jorton 51f1bc07ed - add /usr/bin/certwatch 
- support --days argument to genkey (#131045)
 2004-09-10 14:16:06 +00:00
cvsdist 944dec1baa auto-import changelog data from crypto-utils-2.0-5.src.rpm 
Mon Aug 16 2004 Joe Orton <jorton@redhat.com> 2.0-5
- rebuild
Mon Sep 15 2003 Joe Orton <jorton@redhat.com> 2.0-4
- hide private key passwords during entry
- fix CSR generation
Mon Sep 01 2003 Joe Orton <jorton@redhat.com> 2.0-3
- fix warnings when in UTF-8 locale
Tue Aug 26 2003 Joe Orton <jorton@redhat.com> 2.0-2
- allow upgrade from Stronghold 4.0
Mon Aug 04 2003 Joe Orton <jorton@redhat.com> 2.0-1
- update for RHEL
 2004-09-09 03:59:47 +00:00