Releases: elbosso/expect-dialog-ca
Elliptic curve support
The create_ca script now offers the possibility for the user to decide what kind of key she wants to use: RSA and - new! - EC are possible. For RSA keys, the user then can decide upon a bit length as always. If she chooses EC instead, a list of possible parameter sets for determining the key created is then displayed. All this can of course be skipped by providing the script with the corresponding command line parameters.
Also, the documentation has been expanded to account for these new possibilities and information about what to do if end entities (subjects) request certification of EC keys.
2022.12
This release contains several enhancements and new features as well as some polishing of the documentation, especially
- allow for adding an OCSP url when creating a CA
- errors signing requests where the path including the filename of the CSR contains whitespaces
- introduce logging to syslog
- show a way to quickly document/visualize the structure of a complex pki
- move revoked certificates to a subfolder for storage
- make it possible to state revocation reason
- add a script that searches all CAs in a directory and updates the CRLs
- add a script that searches for all CRLS below a directory and copies them to a target directory for publication
Ubuntu 20.04 Focal Fossa compatibility and bugfixes
This release brings with it several bugfixes - the most important one is to circumvent a bug in the dialog package provided by ubuntu 20.04.
Custom OIDs to the max!
Ironed out several bugs
Improved User experience
Added new kind of certificate to Identity CA: multiple EMail-Adresses are now possible for smime-certificates
Added possibility to define custom OIDs as extensions of Distinguished Names
Added possibility to define custom OIDs as certificate extensions
software cas now included
This release breaks compatibility with former releases!
If you want to continue using CAs already setup you have to copy all certificates issued by any preexisting CA from directory ca to directory certs.
This release brings a new kind of CA: The software CA is for issuing certificates to be used as codesigning certificates
Version 1.2.0
Major rework and ironing out of some annoying kinks. Documentation has improved both online and offline ( calling scripts with -h and https://elbosso.github.io/expect-dialog-ca/)
Bugfix release
1.1.1 fixes #9
Maintenance release
addressed incompatibilites with binaries in ubuntu 18.04