summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMaik Otto <m.otto@phytec.de>2020-06-04 16:18:44 +0200
committerStefan Müller-Klieser <s.mueller-klieser@phytec.de>2020-06-08 16:33:23 +0200
commit42e7de49b81f3f22643ed1f47c79cff95c510bc6 (patch)
tree2212bea643ceaafff1ff2b01ddb4e0e04985a4ac
parentf9b001316692aa6dd878d0847c91337b6a4bf75f (diff)
downloadmeta-yogurt-42e7de49b81f3f22643ed1f47c79cff95c510bc6.tar.bz2
meta-yogurt-42e7de49b81f3f22643ed1f47c79cff95c510bc6.zip
scripts: rauc_creation: change from self signed to intermediate certificate
Change the certificate creation information to the same as the other and configure the rauc ca as intermediate certificate authority. Signed-off-by: Maik Otto <m.otto@phytec.de> Signed-off-by: Stefan Müller-Klieser <s.mueller-klieser@phytec.de>
-rw-r--r--scripts/rauc_creation.cnf16
1 files changed, 11 insertions, 5 deletions
diff --git a/scripts/rauc_creation.cnf b/scripts/rauc_creation.cnf
index 1b22ed0..b5f30cd 100644
--- a/scripts/rauc_creation.cnf
+++ b/scripts/rauc_creation.cnf
@@ -4,16 +4,22 @@ distinguished_name = dn
req_extensions = ext
input_password = PASSPHRASE
# Extension to add when the -x509 option is used.
-x509_extensions = v3_ca
+x509_extensions = v3_inter
[dn]
-CN = PHYTEC Messtechnik GmbH PHYTEC BSP CA
-O = PHYTEC Messtechnik GmbH
+CN = PHYTEC-rauc
+emailAddress = info@phytec.de
+OU = PHYTEC
+O = SW
+L = Mainz
+C = DE
+ST = Rheinland-Pfalz
[ext]
#subjectAltName = DNS:www.phytec.de,DNS:phytec.de
-[ v3_ca ]
+[ v3_inter ]
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid:always,issuer
-basicConstraints = CA:true
+basicConstraints =critical, CA:true
+keyUsage = critical, digitalSignature, cRLSign, keyCertSign