Don't add the TS EKU by default in openssl.cnf because it then

author Dr. Stephen Henson <steve@openssl.org>

Tue, 7 Nov 2006 14:27:55 +0000 (14:27 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Tue, 7 Nov 2006 14:27:55 +0000 (14:27 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Tue, 7 Nov 2006 14:27:55 +0000 (14:27 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Tue, 7 Nov 2006 14:27:55 +0000 (14:27 +0000)
diff --git a/apps/openssl.cnf b/apps/openssl.cnf

index 2995800d96565247b86ec820c8d59dcac9106b86..7bcaa53ede5faa99fe77d2a0e737ce4ac51616a4 100644 (file)
--- a/apps/openssl.cnf
+++ b/apps/openssl.cnf
@@ -212,7 +212,7 @@ authorityKeyIdentifier=keyid,issuer
  #nsSslServerName
  
  # This is required for TSA certificates.
-extendedKeyUsage = critical,timeStamping
+# extendedKeyUsage = critical,timeStamping
  
  [ v3_req ]
author	Dr. Stephen Henson <steve@openssl.org>
	Tue, 7 Nov 2006 14:27:55 +0000 (14:27 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Tue, 7 Nov 2006 14:27:55 +0000 (14:27 +0000)