f9251a5c86
The certificates were missing the digitalSignature and keyAgreement usage types, of which at least digitalSignature was checked by CyaSSL. This caused the test server in test 310 (among others) to fail the startup verification and therefore run (see http://curl.haxx.se/mail/lib-2014-07/0303.html).
27 lines
824 B
Promela
27 lines
824 B
Promela
extensions = x509v3
|
|
[ x509v3 ]
|
|
#subjectAltName = DNS:localhost\0h
|
|
subjectAltName = DER:30:0d:82:0b:6c:6f:63:61:6c:68:6f:73:74:00:68
|
|
keyUsage = keyEncipherment,digitalSignature,keyAgreement
|
|
extendedKeyUsage = serverAuth
|
|
subjectKeyIdentifier = hash
|
|
authorityKeyIdentifier = keyid
|
|
basicConstraints = CA:false
|
|
[ req ]
|
|
default_bits = 1024
|
|
distinguished_name = req_DN
|
|
default_md = sha256
|
|
string_mask = utf8only
|
|
[ req_DN ]
|
|
countryName = "Country Name is Northern Nowhere"
|
|
countryName_value = NN
|
|
organizationName = "Organization Name"
|
|
organizationName_value = Edel Curl Arctic Illudium Research Cloud
|
|
commonName = "Common Name"
|
|
commonName_value = localhost
|
|
|
|
[something]
|
|
# The key
|
|
# the certificate
|
|
# some dhparam
|