On 2021/02/11 22:22, Theo Buehler wrote:
> On Thu, Feb 11, 2021 at 08:55:55PM +, Stuart Henderson wrote:
> > acme-client works with ecdsa certificates, but if there's no existing
> > key, it has no way to tell whether you want ec or rsa so it can't
> > actually generate a new ec key. (even if
On Thu, Feb 11, 2021 at 08:55:55PM +, Stuart Henderson wrote:
> acme-client works with ecdsa certificates, but if there's no existing
> key, it has no way to tell whether you want ec or rsa so it can't
> actually generate a new ec key. (even if it did, acme-client's default
> secp384r1 isn't
acme-client works with ecdsa certificates, but if there's no existing
key, it has no way to tell whether you want ec or rsa so it can't
actually generate a new ec key. (even if it did, acme-client's default
secp384r1 isn't accepted by buypass).
here are a few changes for ssl(8) that i think are
