IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-26 00:41:25 -06:00
Code Issues Packages Projects Releases Wiki Activity
80928ba6f5
freeipa/ipatests/test_integration/test_pki_config_override.py
Christian Heimes 42efdc7bb1 Add test case for pki config override 
Install CA with 4096bit RSA key and SHA-384 signature.

Fixes: https://pagure.io/freeipa/issue/5608
Signed-off-by: Christian Heimes <cheimes@redhat.com>
Reviewed-By: Fraser Tweedale <ftweedal@redhat.com>
Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
2019-04-10 13:43:23 +02:00

38 lines
1.0 KiB
Python
Raw Blame History

#
# Copyright (C) 2019 FreeIPA Contributors see COPYING for license
#
"""Test cases for PKI config overrides
"""
from __future__ import absolute_import
from ipalib.x509 import load_pem_x509_certificate
from ipaplatform.paths import paths
from ipatests.test_integration.base import IntegrationTest
from ipatests.pytest_ipa.integration import tasks
KEY_OVERRIDE = """
[DEFAULT]
ipa_key_size=4096
"""
class TestPKIConfigOverride(IntegrationTest):
@classmethod
def install(cls, mh):
pki_ini = tasks.upload_temp_contents(cls.master, KEY_OVERRIDE)
extra_args = [
'--pki-config-override', pki_ini,
]
tasks.install_master(
cls.master, setup_dns=False, extra_args=extra_args
)
cls.master.run_command(['rm', '-f', pki_ini])
def test_cert_rsa4096(self):
ca_pem = self.master.get_file_contents(
paths.IPA_CA_CRT, encoding=None
)
cert = load_pem_x509_certificate(ca_pem)
assert cert.public_key().key_size == 4096
Reference in New Issue View Git Blame Copy Permalink