Mercurial > hg > nginx-tests

diff ssl_certificates.t @ 1488:dbce8fb5f5f8

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Tests: align with OpenSSL security level 2. This updates minimum requirements to 2048 bit RSA keys and SHA-2 message digest.
author Sergey Kandaurov <pluknet@nginx.com>
date Tue, 09 Jul 2019 13:37:55 +0300
parents 4e48bf51714f
children 0e1865aa9b33
line wrap: on
line diff
--- a/ssl_certificates.t
+++ b/ssl_certificates.t
@@ -70,7 +70,7 @@ EOF
 
 $t->write_file('openssl.conf', <<EOF);
 [ req ]
-default_bits = 1024
+default_bits = 2048
 encrypt_key = no
 distinguished_name = req_distinguished_name
 [ req_distinguished_name ]
@@ -80,7 +80,7 @@ my $d = $t->testdir();
 
 system("openssl ecparam -genkey -out $d/ec.key -name prime256v1 "
 	. ">>$d/openssl.out 2>&1") == 0 or die "Can't create EC pem: $!\n";
-system("openssl genrsa -out $d/rsa.key 1024 >>$d/openssl.out 2>&1") == 0
+system("openssl genrsa -out $d/rsa.key 2048 >>$d/openssl.out 2>&1") == 0
         or die "Can't create RSA pem: $!\n";
 
 foreach my $name ('ec', 'rsa') {