Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

easyrsa-tools.lib: New command 'renew ca' #1255

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

easyrsa-tools.lib: New command 'renew ca' #1255

wants to merge 2 commits into from
+232 −1

Conversation

TinCanTech
Copy link
Collaborator

@TinCanTech TinCanTech commented Nov 15, 2024
edited
Loading

This is currently a work-in-progress.

@TinCanTech TinCanTech self-assigned this Nov 15, 2024
@TinCanTech TinCanTech added enhancement development Possible changes ChangeLog Item easyrsa-tools.lib renew I cannot go back; No. But if you could, would you really want to? Version 3.2.2-Release labels Nov 15, 2024
@TinCanTech
easyrsa-tools.lib: New command 'renew-ca'
33bcbae 
Sign a new CA certificate from the original CA private key.
Support all options provided by Easy-RSA, eg. 'critical' attribute.

The code is very similar to the standard 'build-ca' command, without
the generation of a new private key.

The new CA certificate will replace the old one.
The old certificate is kept in a list of expired CA certificates:
This new file is 'pki/exipred-ca-cert.list'

The final replacement of the old CA is guarded by a confirmation.
If the confirmation fails then all new data is discarded.

Signed-off-by: Richard T Bonhomme <[email protected]>
@TinCanTech
Integrate easyrsa-tools.lib:'renew-ca' into command selection
e03f023 
Signed-off-by: Richard T Bonhomme <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@TinCanTech TinCanTech

Labels
ChangeLog Item development Possible changes easyrsa-tools.lib enhancement renew I cannot go back; No. But if you could, would you really want to? Version 3.2.2-Release
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@TinCanTech