Mercurial > hg > nginx-tests
comparison ssl_engine_keys.t @ 1328:a682c219af45
Tests: updated ssl_engine_keys.t test.
After merge with libp11, pkcs11 engine shared object was renamed
from "engine_pkcs11.so" to "pkcs11.so". Changed configuration
accordingly.
Additionally, changed "init" to "1" in the engine configuration. This
keeps pkcs11 engine loaded and prevents segmentation faults observed
during nginx shutdown.
While here, restored correct order of ssl_certificate and ssl_certificate_key.
| author | Maxim Dounin <mdounin@mdounin.ru> |
|---|---|
| date | Tue, 22 May 2018 17:46:59 +0300 |
| parents | 0af58b78df35 |
| children | 44973a23b031 |
comparison
equal
deleted
inserted
replaced
| 1327:ecbd984ffe04 | 1328:a682c219af45 |
|---|---|
| 45 server { | 45 server { |
| 46 listen 127.0.0.1:8081 ssl; | 46 listen 127.0.0.1:8081 ssl; |
| 47 listen 127.0.0.1:8080; | 47 listen 127.0.0.1:8080; |
| 48 server_name localhost; | 48 server_name localhost; |
| 49 | 49 |
| 50 ssl_certificate localhost.crt; | |
| 50 ssl_certificate_key engine:pkcs11:slot_0-id_00; | 51 ssl_certificate_key engine:pkcs11:slot_0-id_00; |
| 51 ssl_certificate localhost.crt; | |
| 52 | 52 |
| 53 location / { | 53 location / { |
| 54 # index index.html by default | 54 # index index.html by default |
| 55 } | 55 } |
| 56 location /proxy { | 56 location /proxy { |
| 79 [engine_section] | 79 [engine_section] |
| 80 pkcs11 = pkcs11_section | 80 pkcs11 = pkcs11_section |
| 81 | 81 |
| 82 [pkcs11_section] | 82 [pkcs11_section] |
| 83 engine_id = pkcs11 | 83 engine_id = pkcs11 |
| 84 dynamic_path = /usr/local/lib/engines/engine_pkcs11.so | 84 dynamic_path = /usr/local/lib/engines/pkcs11.so |
| 85 MODULE_PATH = /usr/local/lib/softhsm/libsofthsm.so | 85 MODULE_PATH = /usr/local/lib/softhsm/libsofthsm.so |
| 86 init = 0 | 86 init = 1 |
| 87 PIN = 1234 | 87 PIN = 1234 |
| 88 | 88 |
| 89 [ req ] | 89 [ req ] |
| 90 default_bits = 1024 | 90 default_bits = 1024 |
| 91 encrypt_key = no | 91 encrypt_key = no |