projects / openssl.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
New option to CA.pl to sign request using CA extensions.
[openssl.git] / apps / CA.pl.in
diff --git a/apps/CA.pl.in b/apps/CA.pl.in
index 4eef57e6e3919aac3a1b13976d1d9d261d5f9cc9..7781067d6a000c20f993a58c99d6fc469b17741a 100644 (file)
--- a/apps/CA.pl.in
+++ b/apps/CA.pl.in
@@ -116,6 +116,11 @@ foreach (@ARGV) {
                                                        "-infiles newreq.pem");
            $RET=$?;
            print "Signed certificate is in newcert.pem\n";
+       } elsif (/^(-signCA)$/) {
+           system ("$CA -policy policy_anything -out newcert.pem " .
+                                       "-extensions v3_ca -infiles newreq.pem");
+           $RET=$?;
+           print "Signed CA certificate is in newcert.pem\n";
        } elsif (/^-signcert$/) {
            system ("$X509 -x509toreq -in newreq.pem -signkey newreq.pem " .
                                                                "-out tmp.pem");
Unnamed repository; edit this file 'description' to name the repository.