Mercurial > hg > nginx-tests
comparison ssl_crl.t @ 1488:dbce8fb5f5f8
Tests: align with OpenSSL security level 2.
This updates minimum requirements to 2048 bit RSA keys and SHA-2 message digest.
| author | Sergey Kandaurov <pluknet@nginx.com> |
|---|---|
| date | Tue, 09 Jul 2019 13:37:55 +0300 |
| parents | 4e48bf51714f |
| children | cdcd75657e52 |
comparison
equal
deleted
inserted
replaced
| 1487:fe0765147e15 | 1488:dbce8fb5f5f8 |
|---|---|
| 79 | 79 |
| 80 my $d = $t->testdir(); | 80 my $d = $t->testdir(); |
| 81 | 81 |
| 82 $t->write_file('openssl.conf', <<EOF); | 82 $t->write_file('openssl.conf', <<EOF); |
| 83 [ req ] | 83 [ req ] |
| 84 default_bits = 1024 | 84 default_bits = 2048 |
| 85 encrypt_key = no | 85 encrypt_key = no |
| 86 distinguished_name = req_distinguished_name | 86 distinguished_name = req_distinguished_name |
| 87 [ req_distinguished_name ] | 87 [ req_distinguished_name ] |
| 88 EOF | 88 EOF |
| 89 | 89 |
| 92 default_ca = myca | 92 default_ca = myca |
| 93 | 93 |
| 94 [ myca ] | 94 [ myca ] |
| 95 new_certs_dir = $d | 95 new_certs_dir = $d |
| 96 database = $d/certindex | 96 database = $d/certindex |
| 97 default_md = sha1 | 97 default_md = sha256 |
| 98 policy = myca_policy | 98 policy = myca_policy |
| 99 serial = $d/certserial | 99 serial = $d/certserial |
| 100 default_days = 1 | 100 default_days = 1 |
| 101 | 101 |
| 102 [ myca_policy ] | 102 [ myca_policy ] |