f9251a5c86
The certificates were missing the digitalSignature and keyAgreement usage types, of which at least digitalSignature was checked by CyaSSL. This caused the test server in test 310 (among others) to fail the startup verification and therefore run (see http://curl.haxx.se/mail/lib-2014-07/0303.html).
26 lines
753 B
Promela
26 lines
753 B
Promela
extensions = x509v3
|
|
[ x509v3 ]
|
|
subjectAltName = DNS:localhost
|
|
keyUsage = keyEncipherment,digitalSignature,keyAgreement
|
|
extendedKeyUsage = serverAuth
|
|
subjectKeyIdentifier = hash
|
|
authorityKeyIdentifier = keyid
|
|
basicConstraints = CA:false
|
|
[ req ]
|
|
default_bits = 1024
|
|
distinguished_name = req_DN
|
|
default_md = sha256
|
|
string_mask = utf8only
|
|
[ req_DN ]
|
|
countryName = "Country Name is Northern Nowhere"
|
|
countryName_value = NN
|
|
organizationName = "Organization Name"
|
|
organizationName_value = Edel Curl Arctic Illudium Research Cloud
|
|
commonName = "Common Name"
|
|
commonName_value = localhost
|
|
|
|
[something]
|
|
# The key
|
|
# the certficate
|
|
# some dhparam
|