openwrt

mirror of https://github.com/openwrt/openwrt.git synced 2024-12-20 06:08:08 +00:00

History

Sergey V. Lobanov 6bfc8bb4a3 utils/px5g-wolfssl: make selfsigned certicates compatible with chromium Chromium based web-browsers (version >58) checks x509v3 extended attributes. If this check fails then chromium does not allow to click "Proceed to ... (unsafe)" link. This patch add three x509v3 extended attributes to self-signed certificate: 1. SAN (Subject Alternative Name) (DNS Name) = CN (common name) 2. Key Usage = Digital Signature, Non Repudiation, Key Encipherment 3. Extended Key Usage = TLS Web Server Authentication SAN will be added only if CONFIG_WOLFSSL_ALT_NAMES=y Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in>	2021-12-29 22:55:16 +01:00
..
Makefile	utils/px5g-wolfssl: make selfsigned certicates compatible with chromium	2021-12-29 22:55:16 +01:00
px5g-wolfssl.c	utils/px5g-wolfssl: make selfsigned certicates compatible with chromium	2021-12-29 22:55:16 +01:00

Sergey V. Lobanov 6bfc8bb4a3 utils/px5g-wolfssl: make selfsigned certicates compatible with chromium

Chromium based web-browsers (version >58) checks x509v3 extended attributes.
If this check fails then chromium does not allow to click "Proceed to ...
(unsafe)" link. This patch add three x509v3 extended attributes to self-signed
certificate:
1. SAN (Subject Alternative Name) (DNS Name) = CN (common name)
2. Key Usage = Digital Signature, Non Repudiation, Key Encipherment
3. Extended Key Usage = TLS Web Server Authentication

SAN will be added only if CONFIG_WOLFSSL_ALT_NAMES=y

Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in>

2021-12-29 22:55:16 +01:00

Makefile

utils/px5g-wolfssl: make selfsigned certicates compatible with chromium

2021-12-29 22:55:16 +01:00

px5g-wolfssl.c

utils/px5g-wolfssl: make selfsigned certicates compatible with chromium

2021-12-29 22:55:16 +01:00