README: update SSL script to generate sha256 cert

author Shuanglei Tao <tsl0922@gmail.com>

Thu, 18 Jul 2019 09:21:46 +0000 (17:21 +0800)

committer GitHub <noreply@github.com>

Thu, 18 Jul 2019 09:21:46 +0000 (17:21 +0800)
author Shuanglei Tao <tsl0922@gmail.com>
Thu, 18 Jul 2019 09:21:46 +0000 (17:21 +0800)
committer GitHub <noreply@github.com>
Thu, 18 Jul 2019 09:21:46 +0000 (17:21 +0800)
diff --git a/README.md b/README.md

index de2f5329c63772c917b024e3ba6d31be5fc21a6a..998a0f1922faaaa40b0e464f5da273999fdfcbcc 100644 (file)
--- a/README.md
+++ b/README.md
@@ -131,7 +131,7 @@ openssl req -new -x509 -days 365 -key ca.key -subj "/C=CN/ST=GD/L=SZ/O=Acme, Inc
  
  # server certificate (for multiple domains, change subjectAltName to: DNS:example.com,DNS:www.example.com)
  openssl req -newkey rsa:2048 -nodes -keyout server.key -subj "/C=CN/ST=GD/L=SZ/O=Acme, Inc./CN=localhost" -out server.csr
-openssl x509 -req -extfile <(printf "subjectAltName=DNS:localhost") -days 365 -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt
+openssl x509 -sha256 -req -extfile <(printf "subjectAltName=DNS:localhost") -days 365 -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt
  
  # client certificate (the p12/pem format may be useful for some clients)
  openssl req -newkey rsa:2048 -nodes -keyout client.key -subj "/C=CN/ST=GD/L=SZ/O=Acme, Inc./CN=client" -out client.csr
author	Shuanglei Tao <tsl0922@gmail.com>
	Thu, 18 Jul 2019 09:21:46 +0000 (17:21 +0800)
committer	GitHub <noreply@github.com>
	Thu, 18 Jul 2019 09:21:46 +0000 (17:21 +0800)