1. 02 Jun, 2018 2 commits
    • ale's avatar
      Ensure that 'check' and 'sign' do the same thing · b41466ff
      ale authored
      Specifically they should both add the subject CN to the set of
      subjectAltNames. Also add a small test script to verify that signing
      works using the command-line tool.
      b41466ff
    • ale's avatar
      Check for CA validity when verifying a certificate · a163626d
      ale authored
      In 'x509ca check', add an option to pass the CA certificate so that
      the tool can verify that it actually signed the service
      certificate (used to detect CA changes).
      a163626d
  2. 10 Mar, 2018 3 commits
  3. 19 Jan, 2018 1 commit
  4. 14 Jan, 2018 1 commit
  5. 25 Jun, 2017 4 commits
    • ale's avatar
      Remove spurious log · 5d0618f5
      ale authored
      5d0618f5
    • ale's avatar
      Minor fixes · b26d006f
      ale authored
      Fix exit status when --check is used, fix certificate metadata comparison.
      b26d006f
    • ale's avatar
      Use custom exit status to detect file modification · 866e67ff
      ale authored
      With the --use-exit-status option x509ca will now exit with status 10
      when the certificates have been modified successfully (unless --check
      is specified, which takes precedence).
      866e67ff
    • ale's avatar
      Refactoring · b2be470f
      ale authored
      Introduces improvements such as:
      - better command-line interface using init/sign commands
      - all commands are idempotent
      - support dry-run --check option for automation
      b2be470f
  6. 04 Jan, 2017 1 commit