Luke Howard 6561afff3a hx509: update gen_req.sh for OpenSSL 1.1 (#392) ...

OpenSSL 1.1 has the pkInitKDC OID built in, which breaks as it was redefined by
openssl.cnf in Heimdal. Try to determine if OpenSSL >= 1.1 and if so, use a
configuration file that omits this OID definition. The implementation is not
robust but as this is simply an example (not run by the test suites), it should
be adequete.

2018-12-24 12:13:29 -06:00

4.2 KiB

Raw Permalink Blame History

View Raw