Introduce: x509-alt-types (folder) and '--x509-alt' ooption #520
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
'x509-alt-types' allows EasyRSA to maintain some core x509-types and allow for much more relaxed rules regarding alternatives. This allows for strongly recommended changes in RFC specification to be incorporated in two stages: * Stage 1: Easy acceptance and subsequent testing of alternatives. * Stage 2: Greater appeal and ease for EasyRSA to change core types. Once changes become part of the alternative types, they can be easily accessed via command line option '--x509-alt', which will select the alternative x509 folder 'x509-alt-types' for ALL operations. * The change to 'easyrsa' is minimal, a single option '--x509-alt', which effects only install_data_to_pki(). * There is a unit test included. * There is a new folder to package: './x509-alt-types' Signed-off-by: Richard T Bonhomme <[email protected]>
TinCanTech
added
development
|
Scope: https://github.com/OpenVPN/easy-rsa/labels/X509 This is only a proposal. |
|
You say:
Which RFC are you referring to? |
I am not referring to any specific RFC, however, some of the changes proposed by others come with RFC documentation. eg: #448 (comment) This proposes a staging area for such changes. Scope https://github.com/OpenVPN/easy-rsa/labels/X509 links the other requests for real changes (not additional comments) to |
|
Closing due to local branch conflict - Will resubmit. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
'x509-alt-types' allows EasyRSA to maintain some core x509-types
and allow for much more relaxed rules regarding alternatives.
This allows for strongly recommended changes in RFC specification
to be incorporated in two stages:
Once changes become part of the alternative types, they can be easily
accessed via command line option '--x509-alt', which will select the
alternative x509 folder 'x509-alt-types' for ALL operations.
The change to 'easyrsa' is minimal, a single option '--x509-alt',
which effects only install_data_to_pki().
There is a unit test included.
There is a new folder to package: './x509-alt-types'
Signed-off-by: Richard T Bonhomme [email protected]