Filippo Valsorda
0d0636e824
Print a warning about wildcard depth in X.509
...
Fixes #60
2019-01-06 18:23:59 -05:00
Filippo Valsorda
6060e206a4
Document the hardcoded PKCS#12 password
...
PKCS#12 encryption is legacy and we don't want to encourage relying on
it by making the password configurable. Some systems require the default
"changeit", so stick with that.
Fixes #86
Closes #58
Closes #87
2019-01-06 17:38:49 -05:00
Filippo Valsorda
060fcce2db
Put PKCS#12 behind a flag, and check in the vendored dependency
2018-08-12 23:29:13 -04:00
linux_china
6be76ae477
Add PKCS#12 generation with default password changeit
...
Merges #34
Fixes #20
2018-08-12 23:29:02 -04:00
Filippo Valsorda
676d4cdf6b
Add a CommonName field to the CA to work-around iOS UI bug
...
Fixes #47
2018-07-30 03:38:23 +02:00
Filippo Valsorda
9e258bad93
Add a SubjectKeyId to the root CA
...
Not really useful for #47 , but good to have and a RFC 5280 MUST.
See https://twitter.com/FiloSottile/status/1023564776834826240
2018-07-30 03:38:23 +02:00
Filippo Valsorda
564b41305c
Polish Linux system store support
2018-07-04 00:06:50 -04:00
Filippo Valsorda
bf4af2d977
Add user@hostname to the OU, and set NotBefore to now
...
This will help figuring out where and when a certificate was created.
Fixes #31
2018-07-03 19:52:18 -04:00
Filippo Valsorda
c4f873a371
Add a warning for second-level wildcards
...
Fixes #30
2018-07-03 17:17:11 -04:00
Filippo Valsorda
e4c5c312a7
Add Firefox support
...
Fixes #6
2018-06-28 01:29:20 -04:00
Filippo Valsorda
7544098b30
Make private keys writeable
...
Read-only is too much hassle for expendable dev keys
2018-06-28 01:03:31 -04:00
Filippo Valsorda
d6aab07a4c
Split off certificate generation code
2018-06-27 23:43:51 -04:00
