Nodejs/node
1
0
Fork 0
mirror of https://github.com/nodejs/node.git synced 2024-11-21 10:59:27 +00:00
Code Issues Actions 25 Packages Projects Releases Wiki Activity
main
node/test/fixtures/openssl_fips_enabled.cnf
Daniel Bevenius f5a5df4802 src,deps,build,test: add OpenSSL config appname 
This commit adds the setting of an appname (configuration section
name), 'nodejs_conf', to be used when reading OpenSSL configuration
files.

The motivation for this is that currently the default OpenSSL
configuration, 'openssl_conf', element will be used which may be
undesirable as it might configure OpenSSL in unwanted ways. With this
commit it is still possible to use a default openssl.cnf file but the
only section that Node.js will read from is a section named
'nodejs_conf'.

PR-URL: https://github.com/nodejs/node/pull/43124
Refs: https://github.com/nodejs/node/issues/40366
Reviewed-By: James M Snell <jasnell@gmail.com>
Reviewed-By: Rich Trott <rtrott@gmail.com>
Reviewed-By: Rafael Gonzaga <rafael.nunu@hotmail.com>
Reviewed-By: Beth Griggs <bgriggs@redhat.com>
2022-05-31 13:41:30 +02:00

13 lines
284 B
INI
Raw Permalink Blame History

# Skeleton openssl.cnf for testing with FIPS
nodejs_conf = openssl_conf_section
authorityKeyIdentifier=keyid:always,issuer:always
[openssl_conf_section]
# Configuration module list
alg_section = evp_sect
[ evp_sect ]
# Set to "yes" to enter FIPS mode if supported
fips_mode = yes
Reference in New Issue View Git Blame Copy Permalink