From 1426a858ae1c4da30f777110e1253fa36bac2b41 Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Wed, 22 Feb 2017 10:19:56 +0100
Subject: new-cert: mark basicConstraints and keyUsage x509v3 extensions as
 critical in the CSR.

Boulder's issue #565 "Golang errors on extensions marked critical" was
fixed upstream, cf. https://github.com/letsencrypt/boulder/issues/565 .
---
 Changelog | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'Changelog')

diff --git a/Changelog b/Changelog
index 035451c..451eace 100644
--- a/Changelog
+++ b/Changelog
@@ -7,6 +7,9 @@ lacme (0.3) upstream;
   - new-cert: sort section names if not passed explicitely.
   - new-cert: new CLI option "min-days" overriding the value found in
     the configuration file.
+  - new-cert: mark the basicConstraints (CA:FALSE) and keyUsage x509v3
+    extensions as critical in the CSR, following upstream fix of
+    Boulder's issue #565.
 
  -- Guilhem Moulin <guilhem@guilhem.org>  Sun, 19 Feb 2017 13:08:41 +0100
 
-- 
cgit v1.2.3