OpenVPN/easy-rsa issues and pull requests

#1092 - easyrsa for strongswan

Issue - State: closed - Opened by smokeberkut 11 months ago - 1 comment

#1091 - sign-req: Remove default server 'subject alternative name' SAN

Pull Request - State: closed - Opened by TinCanTech 11 months ago - 1 comment
Labels: BUG-FIX, Major Changes, ChangeLog Item, improvement, Version 3.2.0-Release

#1090 - section [ easyrsa_ca ] in openssl-easyrsa.cnf is ignored

Issue - State: closed - Opened by febs 11 months ago - 6 comments
Labels: X509-types

#1089 - Ending support for certificate `file_name_base` disconnect from `commonName`

Issue - State: closed - Opened by TinCanTech 11 months ago
Labels: enhancement, ChangeLog Item, Version 3.2.0-Release

#1088 - Subject-Alt-Name: Correct behavior of global option --san

Pull Request - State: closed - Opened by TinCanTech 11 months ago - 2 comments
Labels: BUG-FIX, Version 3.2.0-Release

#1087 - sign-req not honoring --req-c, --req-st, --req-city, ... and falling back to CSR values

Issue - State: closed - Opened by agowa 11 months ago - 5 comments
Labels: Feature request

#1086 - Incorrect SAN entries presented on signing confirmation

Issue - State: closed - Opened by agowa 11 months ago - 2 comments
Labels: BUG, master

#1085 - Make `vars` stackable

Issue - State: closed - Opened by TinCanTech 11 months ago
Labels: undecided, improvement, vars file

#1084 - export-p12, OpenSSL v1.x: Upgrade PBE and MAC options

Pull Request - State: closed - Opened by TinCanTech 11 months ago - 1 comment
Labels: enhancement, openssl, Version 3.2.0-Release

#1083 - export-p12, OpenSSL v1.x: Upgrade PBE and MAC options

Pull Request - State: closed - Opened by TinCanTech 11 months ago - 2 comments
Labels: enhancement, openssl, Version 3.2.0-Release

#1082 - Windows Users of Easy-RSA

Issue - State: open - Opened by TinCanTech 12 months ago
Labels: openvpn, feedback welcome, packaging, windows, discussion

#1081 - export-p12: use OpenSSLv3-compatible ciphers (AES-256-CBC & SHA256) with OpenSSL 1.1

Pull Request - State: closed - Opened by adaugherity 12 months ago - 14 comments
Labels: enhancement, Full-Approval, Signature, Community reveiwed, PKCS, Version 3.2.0-Release

#1080 - Completely remove status reports and date functions

Pull Request - State: closed - Opened by TinCanTech 12 months ago - 2 comments
Labels: Major Changes, ChangeLog Item, improvement, Version 3.2.0-Release

#1079 - vars file not found

Issue - State: closed - Opened by sysadminpower2019 12 months ago - 3 comments
Labels: documentation, question answered, Version 3.1.2, vars file

#1078 - Easy-RSA hangs on Windows 11

Issue - State: closed - Opened by TinCanTech 12 months ago - 1 comment
Labels: BUG, windows, Windows 11

#1077 - Windows busybox install

Pull Request - State: open - Opened by TinCanTech 12 months ago - 14 comments
Labels: feedback welcome, windows, initial-approval, development, Windows 11, busybox

#1076 - New branch `win-write-access`: Initial commit

Pull Request - State: closed - Opened by TinCanTech almost 1 year ago - 18 comments
Labels: windows, development

#1075 - EasyRSA on Windows 11 with `mksh` hangs

Issue - State: closed - Opened by TinCanTech about 1 year ago - 23 comments
Labels: BUG, feedback welcome, development, Windows 11, mksh (Windows)

#1074 - set_var EASYRSA_SSL_CONF - add wrong /

Issue - State: closed - Opened by GLADtr about 1 year ago - 6 comments
Labels: BUG, EasyRSA-OpenSSL-Config, Version 3.1.7, vars file

#1074 - set_var EASYRSA_SSL_CONF - add wrong /

Issue - State: closed - Opened by GLADtr about 1 year ago - 6 comments
Labels: BUG, EasyRSA-OpenSSL-Config, Version 3.1.7, vars file

#1073 - Windows: Introduce 'Non-Admin' mode

Pull Request - State: closed - Opened by TinCanTech about 1 year ago - 25 comments
Labels: BUG, enhancement, windows, BUG-FIX, Version 3.2.0-Release

#1072 - Windows 10 plus no longer correctly supports `mkdir -p`

Issue - State: closed - Opened by TinCanTech about 1 year ago - 7 comments
Labels: BUG, windows, BUG-FIX, Version 3.1.7

#1071 - LibreSSL: Add band-aid fix for missing 'x509' command option '-ext'

Pull Request - State: closed - Opened by TinCanTech about 1 year ago
Labels: LibreSSL

#1070 - Restore 128bit-random certificate serial-number

Pull Request - State: closed - Opened by TinCanTech about 1 year ago
Labels: BUG, BUG-FIX, Version 3.2.0-alpha1

#1069 - Input/output error: Cannot create openssl-easyrsa.cnf

Issue - State: closed - Opened by Ceejus about 1 year ago - 11 comments
Labels: BUG, windows, BUG-FIX, Version 3.1.7

#1068 - LibreSSL: Command `x509`, does not support option `-ext`

Issue - State: closed - Opened by TinCanTech about 1 year ago
Labels: BUG, LibreSSL, Version 3.2.0-Release

#1067 - Abandon `escape_hazard()` - Replace with heredoc expansion

Issue - State: closed - Opened by TinCanTech about 1 year ago - 1 comment
Labels: documentation, development, ChangeLog Item, improvement

#1066 - `sign-req`: Cert. `$serial` number is only 32bit

Issue - State: closed - Opened by TinCanTech about 1 year ago
Labels: BUG, Version 3.2.0-alpha1

#1065 - `build-ca`, password cannot use `$` character

Issue - State: closed - Opened by PWnet about 1 year ago - 9 comments
Labels: documentation, Community reveiwed, Version 3.1.7

#1064 - Replace use of `sed` with `heredoc` expansion

Pull Request - State: closed - Opened by TinCanTech about 1 year ago - 1 comment
Labels: LibreSSL, EasyRSA-OpenSSL-Config, improvement, Version 3.2.0-Release

#1063 - Introduce new global options: --ku-critical and --bc-critical

Pull Request - State: closed - Opened by TinCanTech about 1 year ago - 2 comments
Labels: discussion, X509-types, Feature request

#1062 - Make keyUsage critical in code-signing

Pull Request - State: closed - Opened by eds-collabora about 1 year ago - 2 comments
Labels: X509-types

#1061 - Command `write` syntax details

Issue - State: closed - Opened by TinCanTech about 1 year ago
Labels: feedback welcome, documentation, Sticky, Version 3.2.0-Release, Version 3.2.1-Release

#1060 - Command `write` is not compatible with `--verbose` mode

Issue - State: closed - Opened by TinCanTech about 1 year ago - 1 comment
Labels: BUG, BUG-FIX, Version 3.2.0-beta2

#1059 - `gen-crl` should use `-crldays` not `-days`

Issue - State: closed - Opened by TinCanTech about 1 year ago - 1 comment
Labels: BUG, BUG-FIX, Version 3.2.0-beta2

#1058 - allow cert_type option to renew command like in sign-req

Pull Request - State: closed - Opened by bjoern-r about 1 year ago - 7 comments
Labels: discussion

#1057 - export-p12: New command option 'legacy'

Pull Request - State: closed - Opened by spacefreak86 about 1 year ago - 1 comment
Labels: enhancement, Version 3.2.0-beta2

#1056 - openssl execution fails when --enddate is used

Issue - State: closed - Opened by bjoern-r about 1 year ago - 7 comments
Labels: BUG, BUG-FIX, Version 3.1.7, Version 3.2.0-beta2

#1055 - `v3.2.0-beta2`

Pull Request - State: closed - Opened by TinCanTech about 1 year ago
Labels: BUG-FIX, Version 3.2.0-beta2

#1054 - Command `export-p1` use of traditional format should be conditional

Issue - State: closed - Opened by TinCanTech about 1 year ago
Labels: discussion, PKCS

#1053 - Command `export-p12`, option `usefn` implementation is limited

Issue - State: closed - Opened by TinCanTech about 1 year ago - 1 comment
Labels: enhancement, Version 3.2.0-beta2

#1052 - easy-rsa - renew command v1: Is the old version of the certificate revoked automatically

Issue - State: closed - Opened by htcfreek about 1 year ago - 2 comments
Labels: question answered

#1051 - Upgrade easy-rsa of OVPN-Server without switching to Debian 13 (Trixie)

Issue - State: closed - Opened by htcfreek about 1 year ago - 4 comments
Labels: question answered

#1050 - Gse easy rsa

Pull Request - State: closed - Opened by gsefanof about 1 year ago

#1049 - easyrsa visually hangs when run in Windows Terminal

Issue - State: closed - Opened by JLJTGR about 1 year ago - 26 comments
Labels: windows

#1048 - Add command option 'legacy' to command 'export-p12'

Pull Request - State: closed - Opened by spacefreak86 about 1 year ago - 6 comments
Labels: Version 3.2.0-beta2

#1047 - Support to organizationIdentifier

Issue - State: closed - Opened by theundefined about 1 year ago - 1 comment

#1046 - `v3.2.0-beta1`

Pull Request - State: closed - Opened by TinCanTech about 1 year ago
Labels: Version 3.2.0-Release, Version 3.2.0-beta1

#1045 - `v3.2.0-Remove-commands`

Pull Request - State: closed - Opened by TinCanTech about 1 year ago
Labels: Major Changes, Version 3.2.0-Release

#1044 - `v3.2.0` Command removal

Issue - State: closed - Opened by TinCanTech about 1 year ago
Labels: documentation, Major Changes

#1043 - `v3.2.0-alpha2`

Pull Request - State: closed - Opened by TinCanTech about 1 year ago
Labels: Version 3.2.0-alpha2, Version 3.2.0-Release

#1042 - Consider `usrmerge`

Issue - State: open - Opened by TinCanTech about 1 year ago

#1041 - `v3.2.0-alpha1`

Pull Request - State: closed - Opened by TinCanTech about 1 year ago - 3 comments
Labels: Version 3.2.0-alpha1, Version 3.2.0-Release

#1040 - v3.2.0 Moved

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: Version 3.2.0-alpha1

#1039 - Command: `x509-eku` `v2`

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: enhancement, BUG-FIX, X509-types, ChangeLog Item, Version 3.2.0-alpha1, Version 3.2.0-Release

#1038 - `build-*-full`: If signing fails then also delete key and req files

Issue - State: closed - Opened by TinCanTech over 1 year ago
Labels: invalid

#1037 - escape_hazarrd(): Reuse source_vars()

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: improvement, Version 3.2.0-alpha1, Version 3.2.0-Release

#1036 - Remove unwanted code - Minor improvements

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: improvement, Version 3.2.0-alpha1, Version 3.2.0-Release

#1035 - Create `/issued` at `init-pki` not `build-ca`

Issue - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: improvement, Version 3.2.0-beta2

#1034 - Improve select_vars() and source_vars()

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: Version 3.1.7

#1033 - Replace santize_path() and ignore Windows "security" warning

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: Version 3.1.7

#1032 - Adding a silent option to `sign-req`

Issue - State: closed - Opened by amittima1234 over 1 year ago - 7 comments
Labels: unclassified

#1031 - Expired client still connects

Issue - State: closed - Opened by fardindadashi over 1 year ago - 3 comments
Labels: not-easyrsa

#1030 - doc: Update EasyRSA-Advanced.md environment variable list

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: documentation, Version 3.1.7

#1029 - Vars hierarchy v2

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 2 comments
Labels: BUG-FIX, Major-Changes-v3.1.x, ChangeLog Item, improvement, Version 3.1.7

#1028 - I cannot run OpenSSL to build a CA.

Issue - State: closed - Opened by Emadghorbani over 1 year ago - 7 comments
Labels: windows

#1027 - How to use the `vars` file

Issue - State: closed - Opened by TinCanTech over 1 year ago - 2 comments
Labels: documentation, Major-Changes-v3.1.x, Version 3.1.7

#1026 - Remove useless option `--no-safe-ssl`

Issue - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: Version 3.1.7

#1025 - Improve vars auto load

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 2 comments
Labels: development, ChangeLog Item, Version 3.1.7

#1024 - New command: make-vars - Print vars.example (here-doc) to stdout

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: ChangeLog Item, improvement, Version 3.1.7

#1023 - show-expire: Calculate certificate expire seconds from Database date

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: BUG-FIX, ChangeLog Item, Version 3.1.7

#1022 - ./easyrsa: 5231: [: Illegal number:

Issue - State: closed - Opened by Zwixx over 1 year ago - 7 comments
Labels: BUG, Community reveiwed, Status Reports

#1021 - Forbid "default vars in the default PKI" for all commands

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: development, Major-Changes-v3.1.x, ChangeLog Item, Version 3.1.7

#1020 - gen-crl: preserve existing crl.pem ownership+mode

Pull Request - State: closed - Opened by Tabiskabis over 1 year ago - 1 comment
Labels: documentation, ChangeLog Item, Feature request, Version 3.1.7

#1019 - gen-crl recreates crl.pem file - not only contents

Issue - State: closed - Opened by Tabiskabis over 1 year ago - 8 comments
Labels: Feature request

#1018 - Keep getting permission denied from easyrsa init-pki

Issue - State: closed - Opened by jepaquette over 1 year ago - 8 comments
Labels: windows, documentation, question answered

#1017 - Line length in easyrsa script

Issue - State: closed - Opened by aduzsardi over 1 year ago - 5 comments

#1016 - CI: action, checkout v4

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: Version 3.1.7, Maintenance

#1015 - The default `vars` file problem

Issue - State: closed - Opened by TinCanTech over 1 year ago - 4 comments
Labels: BUG, documentation, URGENT, development, discussion, Major-Changes-v3.1.x, ChangeLog Item

#1014 - Disable prefer_vars_in_pki_msg(), until further notice

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 3 comments
Labels: development, Major-Changes-v3.1.x, ChangeLog Item, Version 3.1.7

#1013 - Expand help to include undocumented commands

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: ChangeLog Item, improvement, Version 3.1.7

#1012 - Completely Remove Upgrade Functionality

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: conflicts, ChangeLog Item, EasyRSA-23Upgrade

#1011 - Revert "Expand help to include undocumented commands"

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: Version 3.1.7

#1010 - Revert "Completely Remove Upgrade Functionality"

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: Version 3.1.7

#1009 - Warning about moving `vars` to the PKI

Issue - State: closed - Opened by TinCanTech over 1 year ago - 2 comments
Labels: feedback welcome, documentation, Major-Changes-v3.1.x, Sticky

#1008 - vars: Conditionally disable "Prefer vars in PKI" message

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: improvement, Version 3.1.7

#1007 - error easyrsa-start openvpn server windows

Issue - State: closed - Opened by fcmassarotti over 1 year ago - 18 comments
Labels: feedback welcome, windows, documentation

#1006 - Setting a PKI in `vars` allows the PKI to change unexpectedly

Issue - State: closed - Opened by TinCanTech over 1 year ago
Labels: BUG

#1005 - init-pki: Always create safessl-easyrsa.cnf

Pull Request - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: conflicts, undecided, improvement

#1004 - [Resolved-v316] `init-pki` does not respect `vars`

Issue - State: closed - Opened by TinCanTech over 1 year ago - 3 comments
Labels: feedback welcome, documentation, Major-Changes-v3.1.x, Version 3.1.6

#1003 - vars file: set_var EASYRSA_PKI is ignored?

Issue - State: closed - Opened by Tabiskabis over 1 year ago - 12 comments
Labels: packaging, documentation, Community reveiwed, Major-Changes-v3.1.x, question answered, Version 3.1.6

#1002 - Expand help to include undocumented commands

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: improvement, Version 3.1.7, Reverted

#1001 - Completely Remove Upgrade Functionality

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: ChangeLog Item, EasyRSA-23Upgrade, Version 3.1.7, Reverted

#1000 - verify_working_env: sanitize_path(), forbid broken values

Pull Request - State: closed - Opened by TinCanTech over 1 year ago
Labels: BUG-FIX, version 3.1.6

#999 - Build self-signed certificates for Openvpn peer-fingerprint mode

Issue - State: closed - Opened by TinCanTech over 1 year ago - 1 comment
Labels: Feature request

#998 - Added another Free & Privacy focused DNS Server `9.9.9.9` by [Quad9](https://www.quad9.net/) to the existing list [here](https://github.com/trimstray/the-book-of-secret-knowledge#dns-servers-list-privacy)

Issue - State: closed - Opened by stonerp32 over 1 year ago

GitHub / OpenVPN/easy-rsa issues and pull requests