Closed DemesneGH closed 2 years ago
@mssun There are more keys and certs in tls_server-rs/ta/test-ca
which are generated in multiple algorithms (ecdsa
, eddsa
, and rsa
). But the tls server example only loads ecdsa
keys. Should we remove the build-a-pki.sh
script and the other keys? Or just reserve them in the directory?
@mssun There are more keys and certs in
tls_server-rs/ta/test-ca
which are generated in multiple algorithms (ecdsa
,eddsa
, andrsa
). But the tls server example only loadsecdsa
keys. Should we remove thebuild-a-pki.sh
script and the other keys? Or just reserve them in the directory?
I think we can remove the script and leave the test certificates only.
I think we can remove the script and leave the test certificates only.
OK. The script build-a-pki.sh
and the related config file openssl.cnf
have been removed.
The
tls_server-rs
example sets up the TLS server in TA. Same as thetls_client-rs
example, it also needs the larger TA heap buffer. So in the CI process, it uses QEMU images which expand the TA memory.Updates:
54433
to the guest port4433