From 21d1c5ab84a4941e8d2510063f8cb36b6433398d Mon Sep 17 00:00:00 2001
From: Yusuke Endoh <mame@ruby-lang.org>
Date: Tue, 28 May 2019 12:30:45 +0900
Subject: test/test_ssl.rb: Use larger keys

[ This is a backport to the 2.1 branch. ]

OpenSSL 1.1.1 seems to require at least 2048 bits for CA's private keys.

(cherry picked from commit 37b9e49db3087dad20019f6fd7c80c3b4b013d9d)
---
 test/test_ssl.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/test/test_ssl.rb b/test/test_ssl.rb
index c194e504..a3514ef1 100644
--- a/test/test_ssl.rb
+++ b/test/test_ssl.rb
@@ -81,7 +81,7 @@ class OpenSSL::TestSSL < OpenSSL::SSLTestCase
     add0_chain_supported = openssl?(1, 0, 2)
 
     if add0_chain_supported
-      ca2_key = Fixtures.pkey("rsa1024")
+      ca2_key = Fixtures.pkey("rsa2048")
       ca2_exts = [
         ["basicConstraints", "CA:TRUE", true],
         ["keyUsage", "cRLSign, keyCertSign", true],
-- 
cgit v1.2.3