Skip to content

Commit

Permalink
Make crypto tests work with OpenSSL 3.0 under FIPS
Browse files Browse the repository at this point in the history
There are a few restrictions enforced when OpenSSL 3.0 is used under
FIPS mode, that are incompatible with the Go tests, namely:

- For creating signature, encrypting, and decrypting, RSA key size
  must be equal to or longer than 2048 bits
- For verifying signature, RSA key size must be equal to or longer
  than 1024 bits
- PKCS#1 v1.5 is not supported for encryption and decryption (signing
  and verification are still allowed)

This either skips the relevant tests or increases key size used for
testing.

Signed-off-by: Daiki Ueno <[email protected]>
  • Loading branch information
ueno committed Oct 31, 2022
1 parent e311f2a commit b1a0ee7
Showing 1 changed file with 342 additions and 109 deletions.
Loading

0 comments on commit b1a0ee7

Please sign in to comment.