/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to mandos-keygen

  • Committer: Teddy Hogeborn
  • Date: 2013-10-20 19:13:09 UTC
  • Revision ID: teddy@recompile.se-20131020191309-7tyca3oo0zqxn45s
* mandos-keygen: Bug fix: Specify key usage to avoid creating keys
                 with key usage flags which GnuTLS does not like.
                 Also fix --help output documentation about default
                 subkey type.

Show diffs side-by-side

added added

removed removed

Lines of Context:
64
64
  -l BITS, --length BITS
65
65
                        Key length in bits.  Default is 4096.
66
66
  -s TYPE, --subtype TYPE
67
 
                        Subkey type.  Default is ELG-E.
 
67
                        Subkey type.  Default is RSA.
68
68
  -L BITS, --sublength BITS
69
69
                        Subkey length in bits.  Default is 4096.
70
70
  -n NAME, --name NAME  Name of key.  Default is the FQDN.
204
204
    cat >"$BATCHFILE" <<-EOF
205
205
        Key-Type: $KEYTYPE
206
206
        Key-Length: $KEYLENGTH
207
 
        #Key-Usage: encrypt,sign,auth
 
207
        Key-Usage: sign,auth
208
208
        Subkey-Type: $SUBKEYTYPE
209
209
        Subkey-Length: $SUBKEYLENGTH
210
 
        #Subkey-Usage: encrypt,sign,auth
 
210
        Subkey-Usage: encrypt
211
211
        Name-Real: $KEYNAME
212
212
        $KEYCOMMENTLINE
213
213
        $KEYEMAILLINE