1. 20 Oct, 2016 1 commit
  2. 13 Jun, 2015 1 commit
  3. 29 Apr, 2015 1 commit
    • godog's avatar
      don't copy issuer to authorityKeyIdentifier · 29c8be70
      godog authored
      issuer contains the CA' serial number, thus making CA rollover trickier (you'd
      need to issue a new cert with the same serial). Having only keyid allows for
      easier CA rollover.
      29c8be70
  4. 09 Apr, 2015 5 commits
  5. 08 Apr, 2015 3 commits
  6. 07 Oct, 2014 3 commits
    • godog's avatar
      add ca.verify tests · 9a961f60
      godog authored
      9a961f60
    • godog's avatar
      add 'verify' subcommand · d439174a
      godog authored
      d439174a
    • godog's avatar
      allow CA public key renewal · 99d387f6
      godog authored
      setting unique_subject = no allows for key rollovers:
      
        if the value yes is given, the valid certificate entries in the database must
        have unique subjects. if the value no is given, several valid certificate
        entries may have the exact same subject. The default value is yes, to be
        compatible with older (pre 0.9.8) versions of OpenSSL. However, to make CA
        certificate roll-over easier, it's recommended to use the value no,
        especially if combined with the -selfsign command line option.
      99d387f6
  7. 27 Sep, 2014 7 commits
  8. 17 Aug, 2014 1 commit
  9. 07 Feb, 2014 1 commit
  10. 29 Dec, 2013 2 commits
  11. 10 Dec, 2012 2 commits
  12. 09 Dec, 2012 2 commits
  13. 17 Nov, 2012 1 commit
  14. 08 Feb, 2012 3 commits
  15. 06 Feb, 2012 3 commits
  16. 15 Dec, 2006 1 commit
  17. 07 Dec, 2006 3 commits