Mercurial > hg > nginx-tests
comparison ssl_verify_depth.t @ 1488:dbce8fb5f5f8
Tests: align with OpenSSL security level 2.
This updates minimum requirements to 2048 bit RSA keys and SHA-2 message digest.
| author | Sergey Kandaurov <pluknet@nginx.com> |
|---|---|
| date | Tue, 09 Jul 2019 13:37:55 +0300 |
| parents | 4e48bf51714f |
| children | aa5a61d1254b |
comparison
equal
deleted
inserted
replaced
| 1487:fe0765147e15 | 1488:dbce8fb5f5f8 |
|---|---|
| 61 | 61 |
| 62 my $d = $t->testdir(); | 62 my $d = $t->testdir(); |
| 63 | 63 |
| 64 $t->write_file('openssl.conf', <<EOF); | 64 $t->write_file('openssl.conf', <<EOF); |
| 65 [ req ] | 65 [ req ] |
| 66 default_bits = 1024 | 66 default_bits = 2048 |
| 67 encrypt_key = no | 67 encrypt_key = no |
| 68 distinguished_name = req_distinguished_name | 68 distinguished_name = req_distinguished_name |
| 69 [ req_distinguished_name ] | 69 [ req_distinguished_name ] |
| 70 EOF | 70 EOF |
| 71 | 71 |
| 74 default_ca = myca | 74 default_ca = myca |
| 75 | 75 |
| 76 [ myca ] | 76 [ myca ] |
| 77 new_certs_dir = $d | 77 new_certs_dir = $d |
| 78 database = $d/certindex | 78 database = $d/certindex |
| 79 default_md = sha1 | 79 default_md = sha256 |
| 80 policy = myca_policy | 80 policy = myca_policy |
| 81 serial = $d/certserial | 81 serial = $d/certserial |
| 82 default_days = 1 | 82 default_days = 1 |
| 83 | 83 |
| 84 [ myca_policy ] | 84 [ myca_policy ] |