Skip to content

Commit 862d098

Browse files
mrc0mmandmrc0mmand
committed
Use 1024-bit DSA keys with TLS_DHE_DSS_AES_128_CBC_SHA1
1 parent 741c621 commit 862d098

File tree

1 file changed

+10
-4
lines changed
  • gnutls/Interoperability/renegotiation-with-OpenSSL

1 file changed

+10
-4
lines changed

gnutls/Interoperability/renegotiation-with-OpenSSL/runtest.sh

Lines changed: 10 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -44,29 +44,35 @@ rlJournalStart
4444
rlRun "x509KeyGen -t ecdsa ecdsa-ca"
4545
rlRun "x509KeyGen rsa-server"
4646
rlRun "x509KeyGen -t dsa dsa-server"
47+
rlRun "x509KeyGen -t dsa -s 1024 dsa-server-1024"
4748
rlRun "x509KeyGen -t ecdsa ecdsa-server"
4849
rlRun "x509KeyGen rsa-client"
4950
rlRun "x509KeyGen -t dsa dsa-client"
51+
rlRun "x509KeyGen -t dsa -s 1024 dsa-client-1024"
5052
rlRun "x509KeyGen -t ecdsa ecdsa-client"
5153
rlRun "x509SelfSign ca"
5254
rlRun "x509CertSign --CA ca -t ca --DN 'CN=RSA CA' rsa-ca"
5355
rlRun "x509CertSign --CA ca -t ca --DN 'CN=DSA CA' dsa-ca"
5456
rlRun "x509CertSign --CA ca -t ca --DN 'CN=ECDSA CA' ecdsa-ca"
5557
rlRun "x509CertSign --CA rsa-ca rsa-server"
5658
rlRun "x509CertSign --CA dsa-ca dsa-server"
59+
rlRun "x509CertSign --CA dsa-ca dsa-server-1024"
5760
rlRun "x509CertSign --CA ecdsa-ca ecdsa-server"
5861
rlRun "x509CertSign --CA rsa-ca -t webclient rsa-client"
5962
rlRun "x509CertSign --CA dsa-ca -t webclient dsa-client"
63+
rlRun "x509CertSign --CA dsa-ca -t webclient dsa-client-1024"
6064
rlRun "x509CertSign --CA ecdsa-ca -t webclient ecdsa-client"
6165
rlRun "x509DumpCert ca" 0 "Root CA"
6266
rlRun "x509DumpCert rsa-ca" 0 "Intermediate RSA CA"
6367
rlRun "x509DumpCert dsa-ca" 0 "Intermediate DSA CA"
6468
rlRun "x509DumpCert ecdsa-ca" 0 "Intermediate ECDSA CA"
6569
rlRun "x509DumpCert rsa-server" 0 "Server RSA certificate"
6670
rlRun "x509DumpCert dsa-server" 0 "Server DSA certificate"
71+
rlRun "x509DumpCert dsa-server-1024" 0 "Server DSA certificate (1024-bit)"
6772
rlRun "x509DumpCert ecdsa-server" 0 "Server ECDSA certificate"
6873
rlRun "x509DumpCert rsa-client" 0 "Client RSA certificate"
6974
rlRun "x509DumpCert dsa-client" 0 "Client DSA certificate"
75+
rlRun "x509DumpCert dsa-client-1024" 0 "Client DSA certificate (1024-bit)"
7076
rlRun "x509DumpCert ecdsa-client" 0 "Client ECDSA certificate"
7177

7278
# Tested combinations
@@ -176,10 +182,10 @@ rlJournalStart
176182
C_GNUTLS[$i]="TLS_DHE_DSS_AES_128_CBC_SHA1"
177183
C_TLS1_2_ONLY[$i]="False"
178184
C_SUBCA[$i]="$(x509Cert dsa-ca)"
179-
C_CERT[$i]="$(x509Cert dsa-server)"
180-
C_KEY[$i]="$(x509Key dsa-server)"
181-
C_CLNT_CERT[$i]="$(x509Cert dsa-client)"
182-
C_CLNT_KEY[$i]="$(x509Key dsa-client)"
185+
C_CERT[$i]="$(x509Cert dsa-server-1024)"
186+
C_KEY[$i]="$(x509Key dsa-server-1024)"
187+
C_CLNT_CERT[$i]="$(x509Cert dsa-client-1024)"
188+
C_CLNT_KEY[$i]="$(x509Key dsa-client-1024)"
183189
i=$(($i+1))
184190

185191
C_NAME[$i]="TLS_DHE_DSS_WITH_AES_256_CBC_SHA256"

0 commit comments

Comments
 (0)