bin/sign: Force use of v00 certificates.

author Mark Wooding <mdw@distorted.org.uk>

Sat, 11 Feb 2012 15:39:44 +0000 (15:39 +0000)

committer Mark Wooding <mdw@distorted.org.uk>

Sat, 11 Feb 2012 15:39:44 +0000 (15:39 +0000)
author Mark Wooding <mdw@distorted.org.uk>
Sat, 11 Feb 2012 15:39:44 +0000 (15:39 +0000)
committer Mark Wooding <mdw@distorted.org.uk>
Sat, 11 Feb 2012 15:39:44 +0000 (15:39 +0000)
diff --git a/bin/sign b/bin/sign

index 833c2a1..1d5f306 100755 (executable)
--- a/bin/sign
+++ b/bin/sign
@@ -53,7 +53,7 @@ while read line <&3; do
    for kt in $rawkeytypes; do
      if [ ! -f host/$host-$kt.pub ]; then continue; fi
      cp host/$host-$kt.pub publish.new/
-    ssh-keygen -q -sca/ca-$kt \
+    ssh-keygen -q -tv00 -sca/ca-$kt \
        -h -I"$cacomment:$host.$domain" -n$names \
        -V$validity \
        publish.new/$host-$kt.pub
author	Mark Wooding <mdw@distorted.org.uk>
	Sat, 11 Feb 2012 15:39:44 +0000 (15:39 +0000)
committer	Mark Wooding <mdw@distorted.org.uk>
	Sat, 11 Feb 2012 15:39:44 +0000 (15:39 +0000)