Issuer cert can now also be ECDSA

Apparently the cfssl issue was resolved at some time

gui/certificate.go

@@ -45,10 +45,8 @@ func (ci *CertificateInfo) Initialize() {
 	ci.KeyTypes["rsa4096"] = "RSA-4096"
 	ci.KeyTypes["rsa3072"] = "RSA-3072"
 	ci.KeyTypes["rsa2048"] = "RSA-2048"
-	if ci.IsRoot {
-		ci.KeyTypes["ecdsa384"] = "ECDSA-384"
-		ci.KeyTypes["ecdsa256"] = "ECDSA-256"
-	}
+	ci.KeyTypes["ecdsa384"] = "ECDSA-384"
+	ci.KeyTypes["ecdsa256"] = "ECDSA-256"
 
 	ci.KeyType = "rsa4096"
 }

gui/main.go

@@ -1642,8 +1642,7 @@ func _helptext(stage string) template.HTML {
 			"you can either generate a fresh certificate or import an existing one, as long as it is signed by\n",
 			"the Root CA from the previous step.</p>\n",
 			"<p>If you want to generate a certificate, by default the same key type and strength is selected as\n",
-			"was chosen in the previous step when generating the root (except that the issuer certificate cannot\n",
-			"be ECDSA due to a limitation in the Let's Encrypt implementation), but you may choose a different\n",
+			"was chosen in the previous step when generating the root, but you may choose a different\n",
 			"one. By default the common name is the same as the CN for the Root CA, minus the word 'Root'.</p>"))
 	} else {
 		return template.HTML("")