Add server9-bad-{mgfhash,saltlen}.crt Signed-off-by: Jerry Yu <jerry.h.yu@arm.com> Signed-off-by: Pengyu Lv <pengyu.lv@arm.com>

commit: 3ed1653df434124ec595bb0bf51211a73b2d03bc [log] [tgz]
author: Pengyu Lv <pengyu.lv@arm.com> Mon May 29 14:49:17 2023 +0800
committer: Pengyu Lv <pengyu.lv@arm.com> Mon Jun 19 11:41:12 2023 +0800
tree: b7550b0941c323743cd37f6f836b13dcfa983225
parent: 4ac61a92ccfa45f0703fa8f18d4707befe0b9491 [diff]
diff --git a/tests/data_files/Makefile b/tests/data_files/Makefile
index db228b8..f43b86b 100644
--- a/tests/data_files/Makefile
+++ b/tests/data_files/Makefile

@@ -509,6 +509,25 @@
 	cat $^ > $@
 all_final += server9-with-ca.crt
 
+# FIXME: this file expected a bad-saltlen, but it create a good saltlen.
+server9-bad-saltlen.crt: server9.csr $(test_ca_crt) $(test_ca_key_file_rsa)
+	$(OPENSSL) x509 -req -extfile $(cli_crt_extensions_file) -extensions cli-rsa \
+		-passin "pass:$(test_ca_pwd_rsa)" -CA $(test_ca_crt) -CAkey $(test_ca_key_file_rsa) \
+		-set_serial 24 -days 3653 \
+		-sigopt rsa_padding_mode:pss -sigopt rsa_pss_saltlen:max \
+		-sigopt rsa_mgf1_md:sha256 -sha256 \
+		-in $< -out $@
+all_final += server9-bad-saltlen.crt
+
+server9-bad-mgfhash.crt: server9.csr $(test_ca_crt) $(test_ca_key_file_rsa)
+	$(OPENSSL) x509 -req -extfile $(cli_crt_extensions_file) -extensions cli-rsa \
+		-passin "pass:$(test_ca_pwd_rsa)" -CA $(test_ca_crt) -CAkey $(test_ca_key_file_rsa) \
+		-set_serial 24 -days 3653 \
+		-sigopt rsa_padding_mode:pss -sigopt rsa_pss_saltlen:max \
+		-sigopt rsa_mgf1_md:sha224 -sha256 \
+		-in $< -out $@
+all_final += server9-bad-mgfhash.crt
+
 # server10*
 
 server10.crt: server10.key test-int-ca3.crt test-int-ca3.key
commit	3ed1653df434124ec595bb0bf51211a73b2d03bc	[log] [tgz]
author	Pengyu Lv <pengyu.lv@arm.com>	Mon May 29 14:49:17 2023 +0800
committer	Pengyu Lv <pengyu.lv@arm.com>	Mon Jun 19 11:41:12 2023 +0800
tree	b7550b0941c323743cd37f6f836b13dcfa983225
parent	4ac61a92ccfa45f0703fa8f18d4707befe0b9491 [diff]