immortalwrt

History

Sergey V. Lobanov 7014c76c79 utils/px5g-wolfssl: make selfsigned certicates compatible with chromium Chromium based web-browsers (version >58) checks x509v3 extended attributes. If this check fails then chromium does not allow to click "Proceed to ... (unsafe)" link. This patch add three x509v3 extended attributes to self-signed certificate: 1. SAN (Subject Alternative Name) (DNS Name) = CN (common name) 2. Key Usage = Digital Signature, Non Repudiation, Key Encipherment 3. Extended Key Usage = TLS Web Server Authentication SAN will be added only if CONFIG_WOLFSSL_ALT_NAMES=y Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in> (cherry picked from commit `6bfc8bb4a3`)	2022-01-01 17:31:25 +08:00
..
Makefile	utils/px5g-wolfssl: make selfsigned certicates compatible with chromium	2022-01-01 17:31:25 +08:00
px5g-wolfssl.c	utils/px5g-wolfssl: make selfsigned certicates compatible with chromium	2022-01-01 17:31:25 +08:00

Sergey V. Lobanov 7014c76c79

utils/px5g-wolfssl: make selfsigned certicates compatible with chromium

Chromium based web-browsers (version >58) checks x509v3 extended attributes.
If this check fails then chromium does not allow to click "Proceed to ...
(unsafe)" link. This patch add three x509v3 extended attributes to self-signed
certificate:
1. SAN (Subject Alternative Name) (DNS Name) = CN (common name)
2. Key Usage = Digital Signature, Non Repudiation, Key Encipherment
3. Extended Key Usage = TLS Web Server Authentication

SAN will be added only if CONFIG_WOLFSSL_ALT_NAMES=y

Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in>
(cherry picked from commit 6bfc8bb4a3)

2022-01-01 17:31:25 +08:00

Makefile utils/px5g-wolfssl: make selfsigned certicates compatible with chromium 2022-01-01 17:31:25 +08:00

px5g-wolfssl.c utils/px5g-wolfssl: make selfsigned certicates compatible with chromium 2022-01-01 17:31:25 +08:00