Tree: f126ee22d0

dependabot/add-v2-config-file

dependabot/cargo/anyhow-1.0.81

dependabot/cargo/async-process-2.1.0

dependabot/cargo/clap-4.5.3

dependabot/cargo/log-0.4.21

dependabot/cargo/nix-0.28.0

dependabot/cargo/openssl-0.10.64

dependabot/cargo/reqwest-0.11.27

dependabot/cargo/serde-1.0.197

dependabot/cargo/serde_json-1.0.114

dependabot/cargo/thiserror-1.0.58

main

v0.1.0

v0.10.0

v0.11.0

v0.12.0

v0.13.0

v0.14.0

v0.15.0

v0.16.0

v0.17.0

v0.18.0

v0.19.0

v0.2.0

v0.2.1

v0.20.0

v0.21.0

v0.22.0

v0.22.1

v0.22.2

v0.23.0

v0.3.0

v0.4.0

v0.5.0

v0.6.0

v0.6.1

v0.7.0

v0.8.0

v0.9.0

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'f126ee22d0'

${ noResults }

Commit Graph

22 Commits (f126ee22d00b2fd08ca75f2162731fdb0f123e19)

Author	SHA1	Message	Date
Rodolphe Breard	3ee3419676	Add missing commas	4 years ago
Rodolphe Breard	c5f1e90276	Add the `--crt-digest` option in tacd	4 years ago
Rodolphe Breard	c7263703d1	Improve the CLI Some default values were missing. Some descriptions has been rephrased.	4 years ago
Rodolphe Breard	602d8c6cf6	Add the `--crt-signature-alg` option in tacd	4 years ago
Rodolphe Breard	4614d6c407	Add partial EdDSA support Currently, OpenSSL does not have the required `EVP_PKEY_get1_ED(25519|448)` functions, hence EdDSA has been partially implemented and disabled. Once OpenSSL 3.0.0 is out and the `openssl` crates implements the bindings to those functions, full EdDSA implementation could be done and activated. Conditional compilation has been implemented using `rustc-cfg` instructions rather than features so it can be activated from the build script depending on whether or not the cryptographic library supports Ed25519 and Ed448. 7c664b1f1b	4 years ago
Magic Len	b25d01823a	Fix the conflicts_with setting of the `acme-ext-file` option	4 years ago
Rodolphe Breard	52973b4b9e	Remove the PID file after exit Fix #25	5 years ago
Rodolphe Breard	70db8e6dd9	Prevent unnecessary creation of a PID file When running in foreground, a PID file should be created only if the `--pid-file` option is specified. Rel #25	5 years ago
Rodolphe Breard	eccac72460	Fix the default PID file name	5 years ago
Rodolphe Breard	39430009ac	Add internationalized domain names support	5 years ago
Rodolphe Breard	9eda92662d	Allow --pid-file to be used with --foreground The PID file is now always written whether or not ACMEd is running in the foreground. Previously, it was written only when running in the background. Fix #7	5 years ago
Rodolphe Breard	f9a71cbde6	Fix the "foregroung" typo I made the typo once and then copy/pasted it everywhere.	5 years ago
Rodolphe Breard	4ea49512d6	Remove the standalone feature As discussed in #2, ring is not mature enough to replace OpenSSL. Hence, the standalone mode which has been made to implement such a replacement has to be removed until ring becomes usable.	5 years ago
Rodolphe Breard	e403cc9b4c	Update tacd standalone server	5 years ago
Rodolphe Breard	70df290306	Rewrite the crypto keys abstraction Until now, the crypto key abstraction used two different type: PublicKey and PrivateKey. Unfortunately, it does not work with ring and should therefore be rewrote with a single type: KeyPair.	5 years ago
Rodolphe Breard	d897e015c5	Add a dummy tacd standalone server Even if the tacd server might be one of the last thing implemented using ring, it should not block the compilation.	6 years ago
Rodolphe Breard	ff1b6d1aa7	Create an abstraction around the certificate As for public and private keys, the certificate should also be abstracted. rel #2	6 years ago
Rodolphe Breard	63e35712fe	Create an abstraction around public and private keys Since it is planned to add a "standalone" feature that will replace OpenSSL by crates not linking to any external library, it is required to abstract all the OpenSSL specific types. This is a huge work and therefore is divided in several steps. This first one is dedicated to public and private keys. rel #2	6 years ago
Rodolphe Breard	73df1bb951	Allow tacd to listen on a unix socket	6 years ago
Rodolphe Breard	644484cb31	Change the hook and domains definitions The previous system was too limited when it comes to flexibility using hooks. This limitation came from the false idea that, for a given certificate, all challenges must be validated with the same method. In order to prove that false, domains in a certificate can now make use of any challenge type available. In order to be more flexible, hooks are now given a type and are defined in the same registry (instead of 6). Each one will be called when considered relevant based on its type.	6 years ago
Rodolphe Breard	c632f952ed	Support OpenSSL 1.0 AlpnError::ALERT_FATAL has been added in OpenSSL 1.1.0, hence build will fail on any previous version. This commit allows older versions to fall back to AlpnError::NOACK instead.	6 years ago
Rodolphe Breard	2fc4eef60c	Add tacd, a daemon for the tls-alpn-01 challenge ACMEd should and will remain as simple as possible and let the user alone take care of the challenge validation. However, this philosophy does not forbid the project itself to distribute additional tools that are designed to improve the user experience. Because the TLS-ALPN ecosystem is currently very slim, adding tacd is really benefic to ACMEd.	6 years ago