aboutsummaryrefslogtreecommitdiffstats
path: root/test/CAtsa.cnf
Commit message (Collapse)AuthorAgeFilesLines
* Changed the default value of the "ess_cert_id_alg" optionolszomal2023-08-251-1/+1
| | | | | | | | | | This is used to calculate the TSA's public key certificate identifier. The default algorithm is changed from sha1 to sha256. Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/21794)
* Add config_diagnostics to our configuration files.Pauli2021-08-041-0/+3
| | | | | | | | | | | | | | | | The change to a more configuration based approach to enable FIPS mode operation highlights a shortcoming in the default should do something approach we've taken for bad configuration files. Currently, a bad configuration file will be automatically loaded and once the badness is detected, it will silently stop processing the configuration and continue normal operations. This is good for remote servers, allowing changes to be made without bricking things. It's bad when a user thinks they've configured what they want but got something wrong and it still appears to work. Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> (Merged from https://github.com/openssl/openssl/pull/16171)
* TEST: Prefer using precomputed RSA and DH keys for more efficient testsDr. David von Oheimb2021-05-271-1/+0
| | | | | | Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/13715)
* Remove RANDFILE settings from configuration filesDr. Matthias St. Pierre2019-11-241-3/+0
| | | | | | | | | | | | | | OpenSSL 1.1.1 introduced a new CSPRNG with an improved seeding mechanism, which makes it dispensable to define a RANDFILE for saving and restoring randomness. This commit removes the RANDFILE declarations from our own configuration files and adds documentation that this option is not needed anymore and retained mainly for compatibility reasons. Fixes #10433 Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10436)
* Added support for ESSCertIDv2Marek Klein2017-05-031-0/+2
| | | | | Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/771)
* Use better defaults for TSA.Dr. Stephen Henson2015-11-201-5/+5
| | | | | | | | Use SHA256 for TSA and setted permitted digests to a sensible value. Based on PR#4141 Reviewed-by: Matt Caswell <matt@openssl.org>
* Add support for signer_digest option in TS.Dr. Stephen Henson2015-11-201-2/+2
| | | | | | Based on PR#2145 Reviewed-by: Matt Caswell <matt@openssl.org>
* Use 2K RSA and SHA256 in testsRich Salz2015-04-201-1/+1
| | | | Reviewed-by: Andy Polyakov <appro@openssl.org>
* misspellings fixes by https://github.com/vlajos/misspell_fixerVeres Lajos2013-09-051-1/+1
|
* There's really no need to use $ENV::HOMERichard Levitte2010-01-251-4/+1
|
* Make TSA tests use the noprompt mode of utilities rather than pipingDr. Stephen Henson2006-11-071-24/+18
| | | | the result into interative utilities.
* time stamp Makefile, test filesUlf Möller2006-02-121-0/+172
Submitted by: Zoltan Glozik <zglozik@opentsa.org>
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-07 09:14:23 +0000