diff options
| author | Rich Salz <rsalz@openssl.org> | 2017-08-16 15:49:25 -0400 |
|---|---|---|
| committer | Rich Salz <rsalz@openssl.org> | 2017-08-22 09:00:04 -0400 |
| commit | ffb46830e2dfd3203044e6190f50a20fec50162d (patch) | |
| tree | 744d016ce5d6dea1aa48a36e95024d8333dff969 /test/recipes/80-test_ca.t | |
| parent | 932c0df29b7a5a2902c52e2f536b5b83392e2d42 (diff) | |
| download | openssl-ffb46830e2dfd3203044e6190f50a20fec50162d.zip openssl-ffb46830e2dfd3203044e6190f50a20fec50162d.tar.gz openssl-ffb46830e2dfd3203044e6190f50a20fec50162d.tar.bz2 | |
Add random serial# support.
Add -rand_serial to CA command and "serial_rand" config option.
Up RAND_BITS to 159, and comment why: now confirms to CABForum
guidelines (Ballot 164) as well as IETF RFC 5280 (PKIX).
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/4185)
Diffstat (limited to 'test/recipes/80-test_ca.t')
| -rw-r--r-- | test/recipes/80-test_ca.t | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/test/recipes/80-test_ca.t b/test/recipes/80-test_ca.t index 4c470fb..557777e 100644 --- a/test/recipes/80-test_ca.t +++ b/test/recipes/80-test_ca.t @@ -35,7 +35,7 @@ plan tests => 5; if !ok(run(perlapp(["CA.pl","-newreq"])), 'creating certificate request'); - $ENV{OPENSSL_CONFIG} = '-config "'.$std_openssl_cnf.'"'; + $ENV{OPENSSL_CONFIG} = '-rand_serial -config "'.$std_openssl_cnf.'"'; skip "failed to sign certificate request", 2 if !is(yes(cmdstr(perlapp(["CA.pl", "-sign"]))), 0, 'signing certificate request'); |