delta/curl.git/tests/certs/Server-localhost-sv.pem, branch bagder/https-proxyu-req-http github.com: bagder/curl.git certs: generate tests certs with sha256 digest algorithm 2018-09-20T07:06:21+00:00 Daniel Stenberg daniel@haxx.se 2018-09-19T07:04:48+00:00 ba782baac3009e44295589743bb8ae8220793e74 As OpenSSL 1.1.1 starts to complain and fail on sha1 CAs: "SSL certificate problem: CA signature digest algorithm too weak" Closes #3014 
As OpenSSL 1.1.1 starts to complain and fail on sha1 CAs:

"SSL certificate problem: CA signature digest algorithm too weak"

Closes #3014
tests/certs: rebuild certs with 2048-bit RSA keys 2018-09-12T14:09:17+00:00 Yiming Jing jingyiming@baidu.com 2018-09-10T18:32:23+00:00 92f9db17466c4e28998a5cf849c7a861093eff23 The previous test certificates contained RSA keys of only 1024 bits. However, RSA claims that 1024-bit RSA keys are likely to become crackable some time before 2010. The NIST recommends at least 2048-bit keys for RSA for now. Better use full 2048 also for testing. Closes #2973 
The previous test certificates contained RSA keys of only 1024 bits.
However, RSA claims that 1024-bit RSA keys are likely to become
crackable some time before 2010. The NIST recommends at least 2048-bit
keys for RSA for now.

Better use full 2048 also for testing.

Closes #2973
spelling fixes 2017-03-26T21:56:23+00:00 klemens ka7@github.com 2017-03-26T15:02:22+00:00 f7df67cff0a756eefc8daea36e6468df694a43d0 Closes #1356 
Closes #1356
tests/certs: rebuild certificates with modified key usage bits 2015-03-21T15:33:58+00:00 Dan Fandrich dan@coneharvesters.com 2015-03-21T15:20:34+00:00 f9251a5c86f86388bb9aaa078738fcf49870ca3f The certificates were missing the digitalSignature and keyAgreement usage types, of which at least digitalSignature was checked by CyaSSL. This caused the test server in test 310 (among others) to fail the startup verification and therefore run (see http://curl.haxx.se/mail/lib-2014-07/0303.html). 
The certificates were missing the digitalSignature and keyAgreement
usage types, of which at least digitalSignature was checked by CyaSSL.
This caused the test server in test 310 (among others) to fail the
startup verification and therefore run (see
http://curl.haxx.se/mail/lib-2014-07/0303.html).
tests/certs: re-generated because of lost pass-phrase 2010-05-27T21:39:54+00:00 Kamil Dudka kdudka@redhat.com 2010-05-27T21:39:54+00:00 99179da4ccd66af7d9f84410ff66ab91102d6e18 






- Added Diffie-Hellman parameters to several test harness certificate files in
2009-11-28T10:01:21+00:00

Yang Tse
yangsita@gmail.com

2009-11-28T10:01:21+00:00

4d922545d571d002129412d22b19031a4056d3b9

  PEM format. Required by several stunnel versions used by our test harness.





  PEM format. Required by several stunnel versions used by our test harness.







- Peter Sylvester made the HTTPS test server use specific certificates for
2009-08-11T21:48:58+00:00

Daniel Stenberg
daniel@haxx.se

2009-08-11T21:48:58+00:00

e73fe837a8877c0197721b91e0d5ec40cb7a2cd0

  each test, so that the test suite can now be used to actually test the
  verification of cert names etc. This made an error show up in the OpenSSL-
  specific code where it would attempt to match the CN field even if a
  subjectAltName exists that doesn't match. This is now fixed and verified
  in test 311.





  each test, so that the test suite can now be used to actually test the
  verification of cert names etc. This made an error show up in the OpenSSL-
  specific code where it would attempt to match the CN field even if a
  subjectAltName exists that doesn't match. This is now fixed and verified
  in test 311.