alex/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf.git synced 2025-09-20 08:24:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(examples): Example CA certs must contain the Key Usage parameter

Browse Source 
- Example CA certificates that are used for self-signed client certificates
need to include the Key Usage parameter.
- Python3.13 changed the default context of the SSL context that is
generated using ssl.create_default_context() by enabling the VERIFY_X509_STRICT
flag by default
This commit is contained in:
harshal.patil
2025-04-02 13:07:02 +05:30
parent fcbe493070
commit 9221c4eecd
10 changed files with 91 additions and 83 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
examples/protocols/https_server/wss_server/README.md
View File

@@ -53,7 +53,7 @@ as trusted.
You can generate a new certificate using the OpenSSL command line tool:
```
openssl req -newkey rsa:2048 -nodes -keyout prvtkey.pem -x509 -days 3650 -out cacert.pem -subj "/CN=ESP32 HTTPS server example"
openssl req -newkey rsa:2048 -nodes -keyout prvtkey.pem -x509 -days 3650 -out servercert.pem -subj "/CN=ESP32 HTTPS server example" -addext "keyUsage=critical,digitalSignature,keyCertSign"
```
Expiry time and metadata fields can be adjusted in the invocation.