bin/sign: Don't explicitly request a particular certificate version.

author Mark Wooding <mdw@distorted.org.uk>

Sun, 2 Jul 2017 22:01:59 +0000 (23:01 +0100)

committer Mark Wooding <mdw@distorted.org.uk>

Sun, 2 Jul 2017 22:02:42 +0000 (23:02 +0100)
author Mark Wooding <mdw@distorted.org.uk>
Sun, 2 Jul 2017 22:01:59 +0000 (23:01 +0100)
committer Mark Wooding <mdw@distorted.org.uk>
Sun, 2 Jul 2017 22:02:42 +0000 (23:02 +0100)
diff --git a/bin/sign b/bin/sign

index c1f7c62..32592be 100755 (executable)
--- a/bin/sign
+++ b/bin/sign
@@ -67,7 +67,7 @@ while read line <&3; do
    for kt in $rawkeytypes; do
      if [ ! -f host/$host-$kt.pub ]; then continue; fi
      cp host/$host-$kt.pub publish.new/
-    ssh-keygen -q -tv00 -sca/ca-$kt \
+    ssh-keygen -q -sca/ca-$kt \
        -h -I"$cacomment:$host.$domain" -n$names \
        -V$validity \
        publish.new/$host-$kt.pub
author	Mark Wooding <mdw@distorted.org.uk>
	Sun, 2 Jul 2017 22:01:59 +0000 (23:01 +0100)
committer	Mark Wooding <mdw@distorted.org.uk>
	Sun, 2 Jul 2017 22:02:42 +0000 (23:02 +0100)