From bc4540e44bb32c4d626f81fe15e7f81049cb8ad5 Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@redhat.com>
Date: Wed, 2 Jul 2014 15:43:31 +0200
Subject: tests: crq_key_id: increased generated DSA key size and changed hash
 to SHA256

That allows the test to operate under the FIPS140-2 mode.
---
 tests/crq_key_id.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'tests/crq_key_id.c')

diff --git a/tests/crq_key_id.c b/tests/crq_key_id.c
index faf19759e4..c729c7a7fb 100644
--- a/tests/crq_key_id.c
+++ b/tests/crq_key_id.c
@@ -79,7 +79,7 @@ void doit(void)
 		}
 
 		ret =
-		    gnutls_x509_privkey_generate(pkey, algorithm, (algorithm==GNUTLS_PK_RSA)?2048:1024, 0);
+		    gnutls_x509_privkey_generate(pkey, algorithm, (algorithm==GNUTLS_PK_RSA)?2048:2048, 0);
 		if (ret < 0) {
 			fail("gnutls_x509_privkey_generate (%s): %d: %s\n",
 			     gnutls_pk_algorithm_get_name(algorithm),
@@ -131,7 +131,7 @@ void doit(void)
 
 		ret =
 		    gnutls_x509_crq_privkey_sign(crq, abs_pkey,
-						 GNUTLS_DIG_SHA1, 0);
+						 GNUTLS_DIG_SHA256, 0);
 		if (ret < 0) {
 			fail("gnutls_x509_crq_sign: %d: %s\n", ret, gnutls_strerror(ret));
 		}
-- 
cgit v1.2.1