moparisthebest
/
curl
mirror of https://github.com/moparisthebest/curl
1
0
Fork 0
Code Issues Releases Wiki Activity
27,384 Commits 10 Branches 144 Tags 113 MiB
Commit Graph

4 Commits

Author SHA1 Message Date
Daniel Stenberg ba782baac3
certs: generate tests certs with sha256 digest algorithm 
As OpenSSL 1.1.1 starts to complain and fail on sha1 CAs:

"SSL certificate problem: CA signature digest algorithm too weak"

Closes #3014
 2018-09-20 09:06:21 +02:00
Yiming Jing 92f9db1746
tests/certs: rebuild certs with 2048-bit RSA keys 
The previous test certificates contained RSA keys of only 1024 bits.
However, RSA claims that 1024-bit RSA keys are likely to become
crackable some time before 2010. The NIST recommends at least 2048-bit
keys for RSA for now.

Better use full 2048 also for testing.

Closes #2973
 2018-09-12 16:09:17 +02:00
Dan Fandrich f9251a5c86 tests/certs: rebuild certificates with modified key usage bits 
The certificates were missing the digitalSignature and keyAgreement
usage types, of which at least digitalSignature was checked by CyaSSL.
This caused the test server in test 310 (among others) to fail the
startup verification and therefore run (see
http://curl.haxx.se/mail/lib-2014-07/0303.html).
 2015-03-21 16:33:58 +01:00
Travis Burtrum be1a505189 SSL: Add PEM format support for public key pinning 2014-11-24 19:30:09 +01:00