| Index: net/data/ssl/scripts/generate-test-certs.sh
|
| diff --git a/net/data/ssl/scripts/generate-test-certs.sh b/net/data/ssl/scripts/generate-test-certs.sh
|
| index b0fd908b9a3e80583e6f1b0d8cd79afe8b93345e..92d8f22868b191eeab7860a28e75f3ea09dba9f4 100755
|
| --- a/net/data/ssl/scripts/generate-test-certs.sh
|
| +++ b/net/data/ssl/scripts/generate-test-certs.sh
|
| @@ -150,6 +150,13 @@ SUBJECT_NAME="req_dn" \
|
| -config ../scripts/ee.cnf -newkey rsa:2048 -text \
|
| -out ../certificates/reject_intranet_hosts.pem
|
|
|
| +## Leaf certificate with a large key; Apple's certificate verifier rejects with
|
| +## a fatal error if the key is bigger than 4096 bits.
|
| +try openssl req -x509 -days 3650 \
|
| + -config ../scripts/ee.cnf -newkey rsa:4104 -text \
|
| + -sha256 \
|
| + -out ../certificates/large_key.pem
|
| +
|
| ## Validity too long unit test support.
|
| try openssl req -config ../scripts/ee.cnf \
|
| -newkey rsa:2048 -text -out ../certificates/10_year_validity.req
|
|
|
Chromium Code Reviews
Issue 1094983002:
Account for the OS returning an empty certificate chain. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master