Tree: 52fe2c60ba

dependabot/add-v2-config-file

dependabot/cargo/anyhow-1.0.81

dependabot/cargo/async-process-2.1.0

dependabot/cargo/clap-4.5.3

dependabot/cargo/log-0.4.21

dependabot/cargo/nix-0.28.0

dependabot/cargo/openssl-0.10.64

dependabot/cargo/reqwest-0.11.27

dependabot/cargo/serde-1.0.197

dependabot/cargo/serde_json-1.0.114

dependabot/cargo/thiserror-1.0.58

main

v0.1.0

v0.10.0

v0.11.0

v0.12.0

v0.13.0

v0.14.0

v0.15.0

v0.16.0

v0.17.0

v0.18.0

v0.19.0

v0.2.0

v0.2.1

v0.20.0

v0.21.0

v0.22.0

v0.22.1

v0.22.2

v0.23.0

v0.3.0

v0.4.0

v0.5.0

v0.6.0

v0.6.1

v0.7.0

v0.8.0

v0.9.0

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '52fe2c60ba'

${ noResults }

Commit Graph

74 Commits (52fe2c60bae400983c112b82f9c696a6615bbbf2)

Author	SHA1	Message	Date
Rodolphe Breard	52fe2c60ba	Refactor the certificate key type management The previous system used a duplicated enum (`acmed::certificate::Algorithm`) and an imprecise identifier name (algorithm) for both the certificate configuration and post operation hook variable. The first one has been replaced by the `acme_common::crypto::KeyType` enum and the second renames `key_type`.	4 years ago
Rodolphe Breard	bea33179d7	Allow to specify the CSR's digest algorithm	4 years ago
Rodolphe Breard	e17e6d1174	Add the PID file name in the error message Rel #24	4 years ago
Rodolphe Breard	7292cc68ca	Fix the certificate generation tests	4 years ago
Rodolphe Breard	c5f1e90276	Add the `--crt-digest` option in tacd	4 years ago
Rodolphe Breard	f640688a3b	Refactor the hash function interface	4 years ago
Rodolphe Breard	c7263703d1	Improve the CLI Some default values were missing. Some descriptions has been rephrased.	4 years ago
Rodolphe Breard	b08da88bcf	Fix the conditional compilation	4 years ago
Rodolphe Breard	602d8c6cf6	Add the `--crt-signature-alg` option in tacd	4 years ago
Rodolphe Breard	4614d6c407	Add partial EdDSA support Currently, OpenSSL does not have the required `EVP_PKEY_get1_ED(25519|448)` functions, hence EdDSA has been partially implemented and disabled. Once OpenSSL 3.0.0 is out and the `openssl` crates implements the bindings to those functions, full EdDSA implementation could be done and activated. Conditional compilation has been implemented using `rustc-cfg` instructions rather than features so it can be activated from the build script depending on whether or not the cryptographic library supports Ed25519 and Ed448. 7c664b1f1b	4 years ago
Rodolphe Breard	2f39e798d1	Add Unix style globing for config file inclusion Close #6	4 years ago
Rodolphe Breard	25450aebbf	Implement IP identifiers RFC 8738: https://tools.ietf.org/html/rfc8738	4 years ago
Rodolphe Breard	387adc7c4f	Remove the useless calls to `map_err`	4 years ago
Rodolphe Breard	582593de29	Allow to specify the account key type and signature alg in the config	4 years ago
Rodolphe Breard	1350257300	Put Ed25519 support in a feature	4 years ago
Rodolphe Breard	636fbf9cf6	Refactor the JWS signature algorithm management Being tied with the key type, the signature algorithm should therefore be at the same place than the key type, hence `acme_common::crypto`. This reorganization will allow to specify the account key type as well as the signature algorithm in the configuration.	4 years ago
Rodolphe Breard	d7dbd58823	Move the hashing operation inside the signing function This hashing operation is part of the signing process itself and should therefore not be exposed outside of the signing function.	4 years ago
Rodolphe Breard	eabcddb0af	Add support for RSA 2048 account keys	4 years ago
Rodolphe Breard	1ab5b4012e	Use the correct algorithm and hash function for JWK signatures Since there is currently no possibility to chose a different account key type, the current implementation only supports the ES256 algorithm. With the upcoming support of different key types, it had to be changed. This commit add support for ES384 although there is no configuration option that can activate the actual use of it through account keys using the NIST P-384 curve.	4 years ago
Rodolphe Breard	88f83bafe4	Prepare the Cargo.toml files for a different crypto library	4 years ago
Rodolphe Breard	f2e23b20fd	ACMEd v0.9.0	4 years ago
Rodolphe Breard	3c21019cb5	Update the nix that dependabot forgot	4 years ago
Rodolphe Breard	09d01eefb5	Remove openssl calls from the acmed crate The TLS library is encapsulated by acme_common.	4 years ago
Rodolphe Breard	501b1aa9d8	Replace `reqwest` by `attohttpc` `reqwest` is a very good crate, however ACMEd does not require most of its functionalities. For this job, `attohttpc` is also great and comes with much less dependencies. rel #1	4 years ago
Rodolphe Breard	a4e0ccfa51	Correctly handle certificate expiration on openssl The `openssl` crate now include methods to manipulate Asn1Time objects. Before this improvement, the certificate had to be parsed from the DER format using the `x509-parser` crate (which is therefore no longer required). https://github.com/sfackler/rust-openssl/pull/1173 https://github.com/sfackler/rust-openssl/issues/687	4 years ago
Rodolphe Breard	942d0a9ba7	ACMEd v0.8.0	4 years ago
Rodolphe Breard	26ce6fdf40	Refactor the HTTP back-end The previous HTTP back-end was tightly coupled with the threads, which was very inconvenient. It is now completely decoupled so a new threading model may be implemented.	4 years ago
Rodolphe Breard	7ed6be48db	Update the x509-parser dependency	4 years ago
Rodolphe Breard	bfac454b92	Update the syslog dependency	4 years ago
Rodolphe Breard	52973b4b9e	Remove the PID file after exit Fix #25	5 years ago
Rodolphe Breard	70db8e6dd9	Prevent unnecessary creation of a PID file When running in foreground, a PID file should be created only if the `--pid-file` option is specified. Rel #25	5 years ago
Rodolphe Breard	8be37b7fc6	ACMEd v0.7.0	5 years ago
Rodolphe Breard	39430009ac	Add internationalized domain names support	5 years ago
Rodolphe Breard	9eda92662d	Allow --pid-file to be used with --foreground The PID file is now always written whether or not ACMEd is running in the foreground. Previously, it was written only when running in the background. Fix #7	5 years ago
Rodolphe Breard	39df1601d8	Format code	5 years ago
Rodolphe Breard	996ea85be4	Format code	5 years ago
Rodolphe Breard	4904d01e2d	Update the base64 dependency	5 years ago
Rodolphe Breard	101d6bbd4e	Update the nix dependency in acme_common	5 years ago
Rodolphe Breard	b16b2e6b09	Remove the explicit dependency on the time crate	5 years ago
Rodolphe Breard	a8cde157b6	Update the handlebars dependency	5 years ago
Jakub Pastuszek	155feb345c	always use NAMED_CURVE format for EC key storage; fixes #9	5 years ago
Rodolphe Breard	f1f95c4d99	Display a more precise error message for unknown EC keys	5 years ago
Rodolphe Breard	8752b0d1d5	ACMEd v0.6.1	5 years ago
Rodolphe Breard	747d5ccc1c	Update the handlebars dependency	5 years ago
Rodolphe Breard	6c6f76a811	Update the env_logger dependency	5 years ago
Rodolphe Breard	be9e1c7e35	Update the x509-parser dependency	5 years ago
Rodolphe Breard	f3f3bbc116	Update the nix dependency	5 years ago
Rodolphe Breard	405386e5a4	Prevent the crates from being published to a registry This project provides binaries without any link to Rust or Cargo. It is just normal binaries that appears to be written in Rust. Therefore, it does not makes any sense to distribute them in a Rust-specific registry. Furthermore, such publication would not include the man pages installation may not respect some distribution-specific policies.	5 years ago
Rodolphe Breard	55f4d3416b	Refactor the JWK implementation	5 years ago
Rodolphe Breard	4ea49512d6	Remove the standalone feature As discussed in #2, ring is not mature enough to replace OpenSSL. Hence, the standalone mode which has been made to implement such a replacement has to be removed until ring becomes usable.	5 years ago