Mercurial > hg > nginx-tests
diff stream_ssl_certificate.t @ 1488:dbce8fb5f5f8
Tests: align with OpenSSL security level 2.
This updates minimum requirements to 2048 bit RSA keys and SHA-2 message digest.
author | Sergey Kandaurov <pluknet@nginx.com> |
---|---|
date | Tue, 09 Jul 2019 13:37:55 +0300 |
parents | 889283abadf8 |
children | 144c6ce732e4 |
line wrap: on
line diff
--- a/stream_ssl_certificate.t Wed Jun 19 15:07:29 2019 +0300 +++ b/stream_ssl_certificate.t Tue Jul 09 13:37:55 2019 +0300 @@ -117,7 +117,7 @@ $t->write_file('openssl.conf', <<EOF); [ req ] -default_bits = 1024 +default_bits = 2048 encrypt_key = no distinguished_name = req_distinguished_name [ req_distinguished_name ] @@ -135,7 +135,7 @@ foreach my $name ('pass') { system("openssl genrsa -out $d/$name.key -passout pass:pass " - . "-aes128 1024 >>$d/openssl.out 2>&1") == 0 + . "-aes128 2048 >>$d/openssl.out 2>&1") == 0 or die "Can't create $name key: $!\n"; system("openssl req -x509 -new -config $d/openssl.conf " . "-subj /CN=$name/ -out $d/$name.crt -key $d/$name.key "