diff options
author | Michal Klocek <michal.klocek@qt.io> | 2021-05-10 09:40:52 +0200 |
---|---|---|
committer | Michal Klocek <michal.klocek@qt.io> | 2021-05-22 14:10:59 +0200 |
commit | 035579f424e5b69cee212d23fda3467f5db8d19e (patch) | |
tree | d72b17ea3d92f68cd30c63c7fe9a12ff5415901e /tests/auto/quick/qmltests/CMakeLists.txt | |
parent | cf49605c1b93ecdbaa0fa086181beb2c05001747 (diff) |
Fix not working certificates on mac > 10.14
From macOS 10.15 onwards there are new security requirements
for TLS server certificates:
https://support.apple.com/en-us/HT210176
Now all certificates without required fields are reported as
NET::ERR_CERT_INVALID and there is no way to 'bypass' this error.
Our test expects ERR_CERT_AUTHORITY_INVALID value,
for which browsers have an visual option to bypass.
'Fix' certificate by adding new required fields:
* Subject Alternative Name
* Extended Key Usage
Generate a new certificate chain with two certificates, where the
server certificate has the extension config file in the form of:
[SAN]
subjectAltName=DNS:webengine.qt.io
extendedKeyUsage=serverAuth
Use 2048 bit for private key, otherwise tests fail on ubuntu.
Task-number: QTBUG-91230
Pick-to: 5.15
Change-Id: I81d878cf3cae3e9fcc51bfbf250fba9185ca4b01
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
Diffstat (limited to 'tests/auto/quick/qmltests/CMakeLists.txt')
-rw-r--r-- | tests/auto/quick/qmltests/CMakeLists.txt | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/tests/auto/quick/qmltests/CMakeLists.txt b/tests/auto/quick/qmltests/CMakeLists.txt index 9aa4ca76c..a67c4d79a 100644 --- a/tests/auto/quick/qmltests/CMakeLists.txt +++ b/tests/auto/quick/qmltests/CMakeLists.txt @@ -90,8 +90,8 @@ endforeach() file(WRITE ${CMAKE_CURRENT_BINARY_DIR}/webengine.qmltests ${contents}) set(tst_qmltests_resource_files - "resources/cert.pem" - "resources/key.pem" + "resources/server.pem" + "resources/server.key" ) qt_internal_add_resource(tst_qmltests "tst_qmltests" |