OpenVPN/easy-rsa issues and pull requests

#892 - Option `--fix-offset` should not set SSL option `-days`

Issue - State: closed - Opened by TinCanTech almost 2 years ago - 1 comment
Labels: BUG, Version 3.1.x

#891 - Option `--no-safe-ssl` is incompatible with optional SSL field `serialNumber` (Device serial-number)

Issue - State: closed - Opened by TinCanTech almost 2 years ago
Labels: BUG, EasyRSA-OpenSSL-Config, Version 3.0.x, Version 3.1.x

#890 - why "./easyrsa gen-dh" takes much longer time than "openssl dhparam -out dh2048.pem 2048"?

Issue - State: closed - Opened by YangQing1989 almost 2 years ago - 1 comment
Labels: question answered

#889 - why are there some annoying warnings?（centos7）

Issue - State: closed - Opened by YangQing1989 almost 2 years ago - 1 comment

#888 - Using `--fix-offest=NNN` cause SSL to complain about config

Issue - State: closed - Opened by TinCanTech almost 2 years ago - 4 comments
Labels: BUG, EasyRSA-OpenSSL-Config, Version 3.1.3

#886 - `build-ca`: Manual password bug fixes

Pull Request - State: closed - Opened by TinCanTech almost 2 years ago - 1 comment
Labels: BUG, Version 3.1.3

#885 - `build-ca` with a manual password with less than 4 chars fails

Issue - State: closed - Opened by TinCanTech almost 2 years ago
Labels: BUG, Version 3.1.3

#883 - `build-ca` fails to deliberately remove CA `in` password temp-file

Issue - State: closed - Opened by TinCanTech almost 2 years ago
Labels: improvement, Version 3.1.3

#878 - busybox: Upload working Windows executable as 7zip

Pull Request - State: closed - Opened by TinCanTech almost 2 years ago - 9 comments
Labels: windows, development, discussion, POSIX, version 3.1.3, busybox

#877 - Move verify_ssl_lib() - Always verify SSL lib, for all commands

Pull Request - State: closed - Opened by TinCanTech almost 2 years ago - 2 comments
Labels: BUG-FIX, ChangeLog Item, improvement, Version 3.1.3

#875 - `inline_creds()` improvements

Issue - State: closed - Opened by TinCanTech almost 2 years ago
Labels: low hanging fruit

#873 - `init-pki` calls `secure_session` before `verify_ssl_lib`

Issue - State: closed - Opened by TinCanTech about 2 years ago - 1 comment
Labels: BUG, ChangeLog Item, Version 3.1.x

#872 - Option -S|--silent-ssl: Silence ALL SSL error messages ONLY

Pull Request - State: closed - Opened by TinCanTech about 2 years ago
Labels: ChangeLog Item, improvement, Version 3.1.3

#863 - `--silent` does not silence SSL output

Issue - State: closed - Opened by medved-cz about 2 years ago - 4 comments
Labels: Feature request

#861 - Prefer `[ "$#" = N ]`

Issue - State: closed - Opened by TinCanTech about 2 years ago
Labels: improvement, Version 3.1.3

#841 - Ten year [Tin] anniversary for MIRBSD KSH

Issue - State: open - Opened by TinCanTech about 2 years ago - 6 comments
Labels: windows, discussion, POSIX, busybox

#838 - Documentation: `doc/EasyRSA-Passphrase-Automation.md`

Issue - State: open - Opened by TinCanTech about 2 years ago - 3 comments
Labels: feedback welcome, documentation, Sticky

#826 - Consider making `init-pki` default be `soft`

Issue - State: closed - Opened by TinCanTech about 2 years ago - 2 comments
Labels: development, discussion, Version 3.2.0

#825 - Allow external `vars` and PKI `vars` to co-exist

Issue - State: closed - Opened by TinCanTech about 2 years ago - 3 comments
Labels: discussion, Version 3.2.0

#824 - build-ca: Old openssl-easyrsa.cnf is a FATAL error

Pull Request - State: closed - Opened by TinCanTech about 2 years ago - 2 comments
Labels: BUG-FIX, ChangeLog Item, Version 3.1.x, Sticky

#823 - Make old `openssl-easyrsa.cnf` a FATAL error

Issue - State: closed - Opened by TinCanTech about 2 years ago
Labels: BUG, Version 3.1.x, Sticky

#822 - Create `$EASYRSA_REQ_CN_PREFIX`

Issue - State: closed - Opened by TinCanTech about 2 years ago - 1 comment
Labels: discussion, v3.2.x

#809 - status reports do not work when CN is not equal to FILENAME

Issue - State: closed - Opened by TinCanTech about 2 years ago - 1 comment
Labels: BUG, Version 3.1.x, Status Reports

#773 - Root-CA: Allow setting basicConstraint:'pathlen:N'

Pull Request - State: closed - Opened by TinCanTech about 2 years ago - 1 comment
Labels: discussion

#767 - Expand environment variables configured in x509-types files

Issue - State: closed - Opened by TinCanTech about 2 years ago - 4 comments
Labels: LibreSSL, maybe-someday, discussion, X509-types, Feature request

#761 - Easy-rsa gen-req failed after upgrade

Issue - State: closed - Opened by pilchita about 2 years ago - 5 comments
Labels: clarification-requested, EasyRSA-23Upgrade

#728 - 'build-ca' fails if '--passin=file:' and '--passout=file:' use the same filename

Issue - State: closed - Opened by jbrubake over 2 years ago - 13 comments
Labels: invalid, clarification-requested, vague, Sticky

#726 - GPG release key expired

Issue - State: closed - Opened by fvanmaele over 2 years ago - 4 comments
Labels: Solution applied

#722 - spam

Issue - State: closed - Opened by Phoenix7045 over 2 years ago - 1 comment

#694 - Provide `renew` command for all supported X509 certificate types

Issue - State: closed - Opened by TinCanTech over 2 years ago
Labels: X509-types, Feature request, Version 3.1.x

#689 - base64 encode PKCS files for use in Openvpn INLINE tags

Issue - State: closed - Opened by TinCanTech over 2 years ago - 2 comments
Labels: low hanging fruit, PKCS, Feature request

#677 - Using --subject-alt-name AND enviorment variable "EASYRSA_EXTRA_EXTS" could lead to undesired results

Issue - State: closed - Opened by dekeonus over 2 years ago - 6 comments
Labels: clarification-requested, discussion, question answered

#651 - Review how `vars` is processed during `install_data_to_pki()`

Issue - State: closed - Opened by TinCanTech over 2 years ago - 10 comments
Labels: BUG, documentation, improvement, Version 3.0.x, Version 3.1.x

#622 - Upgrade EasyRSA v2.x to v3.x PKI stops working from v3.0.9-rc1 onward

Issue - State: closed - Opened by amerello over 2 years ago - 14 comments
Labels: BUG

#619 - sh.exe crashes on virtual Windows servers

Issue - State: closed - Opened by Arno-PPS over 2 years ago - 4 comments
Labels: wontfix, windows, unclassified

#609 - EasyRSA 'renew' does NOT renew, it builds a new certificate and key

Issue - State: closed - Opened by TinCanTech over 2 years ago - 20 comments
Labels: documentation, Major-Changes-v3.1.x

#597 - cross-signing

Issue - State: closed - Opened by Yannik over 2 years ago - 3 comments
Labels: Feature request

#596 - Using ANY environment variables in X509-types files is NOT officially supported

Issue - State: open - Opened by Yannik over 2 years ago - 11 comments
Labels: LibreSSL, documentation, maybe-someday, discussion, X509-types, Sticky

#589 - regression report 3.1.0 (since 3.0.8): vars handling

Issue - State: closed - Opened by mandree over 2 years ago - 9 comments
Labels: question, packaging, discussion, Major-Changes-v3.1.x

#576 - Incorrect SAN is selected for a server named '555.1.1.1'

Issue - State: closed - Opened by TinCanTech over 2 years ago - 12 comments
Labels: BUG, documentation

#561 - Drop POSIX claim

Issue - State: closed - Opened by ecrist almost 3 years ago - 5 comments
Labels: discussion, Sticky, POSIX

#543 - Easy-rsa date: invalid date '+30day' Renewal not allowed.

Issue - State: closed - Opened by mike-pt almost 3 years ago - 13 comments
Labels: initial-approval, development

#503 - adjust Authority Key Identifier X.509 extension

Pull Request - State: closed - Opened by zhangyoufu almost 3 years ago - 1 comment
Labels: Signature, discussion, X509-types

#482 - Easy-RSA failed to create temporary file

Issue - State: closed - Opened by Gilgamesh0028 almost 3 years ago - 19 comments
Labels: Solution applied, Version 3.1.2

#448 - adjust critical extensions and key usage

Pull Request - State: closed - Opened by zhangyoufu over 3 years ago - 10 comments
Labels: conflicts, discussion, X509-types

#439 - Add an option to change the subject when signing a request.

Pull Request - State: closed - Opened by mat813 almost 4 years ago - 6 comments
Labels: feedback welcome, conflicts, Signature, Feature request

#433 - Added improved support for CA stored in PKCS#11 based token (RFC 7512 URIs).

Pull Request - State: open - Opened by robpower almost 4 years ago - 11 comments
Labels: conflicts, PKCS

#409 - add initial support for easyrsa bash completion

Pull Request - State: open - Opened by eric-belhomme over 4 years ago - 5 comments
Labels: clarification-requested, packaging, windows, Signature, POSIX

#406 - easy-rsa upgrade - documentation

Issue - State: closed - Opened by dsommers over 4 years ago - 8 comments
Labels: documentation, EasyRSA-23Upgrade, Version 3.1.7

#402 - [Information] Can't load ./easy-rsa/pki/.rnd into RNG -- V2

Issue - State: closed - Opened by TinCanTech over 4 years ago - 1 comment
Labels: wontfix, not-easyrsa, openssl, Sticky

#379 - Renew CA/sub-CA

Issue - State: closed - Opened by ErikvLinstee almost 5 years ago - 10 comments
Labels: discussion, Feature request, Sticky

#366 - [New Feature] Easy-TLS utility

Issue - State: open - Opened by TinCanTech almost 5 years ago - 3 comments
Labels: feedback welcome, not-easyrsa, Sticky

#345 - Easyrsa "renew" is a misleading name

Issue - State: closed - Opened by TinCanTech about 5 years ago - 9 comments

#284 - unable to load CA private key

Issue - State: closed - Opened by fabian-milea about 6 years ago - 8 comments

#252 - Can I specify expiration date for a client?

Issue - State: closed - Opened by sallyhaj over 6 years ago - 4 comments

#196 - EC CAs being signed with RSA

Issue - State: closed - Opened by eccgecko almost 7 years ago - 9 comments

#111 - EASYRSA_KEY_SIZE in vars is ignored

Issue - State: closed - Opened by brainpower over 8 years ago - 17 comments
Labels: BUG

#94 - Release/2.x

Pull Request - State: closed - Opened by EdatNGR almost 9 years ago - 1 comment
Labels: Version 2.x, unclassified

#49 - PKI Profile for IKE/IPSec

Issue - State: closed - Opened by QueuingKoala about 10 years ago - 2 comments
Labels: enhancement, feedback welcome, documentation, X509-types

#22 - subjectAltName support

Issue - State: closed - Opened by ghost almost 11 years ago - 9 comments

GitHub / OpenVPN/easy-rsa issues and pull requests