TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 18b9b035ada7a1fd63835bc7d7f1adfb37de44b8 / . / tests / suites / test_suite_x509write.data
blob: 885ba006e8766ef6c1619711783d296162e6010d [file] [log] [blame]
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]1Certificate Request check Server1 SHA1
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]2depends_on:MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]3x509_csr_check:"data_files/server1.key":"data_files/server1.req.sha1":MBEDTLS_MD_SHA1:0:0:0:0:0
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]4
5Certificate Request check Server1 SHA224
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]6depends_on:MBEDTLS_HAS_ALG_SHA_224_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]7x509_csr_check:"data_files/server1.key":"data_files/server1.req.sha224":MBEDTLS_MD_SHA224:0:0:0:0:0
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]8
9Certificate Request check Server1 SHA256
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]10depends_on:MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]11x509_csr_check:"data_files/server1.key":"data_files/server1.req.sha256":MBEDTLS_MD_SHA256:0:0:0:0:0
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]12
13Certificate Request check Server1 SHA384
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]14depends_on:MBEDTLS_HAS_ALG_SHA_384_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]15x509_csr_check:"data_files/server1.key":"data_files/server1.req.sha384":MBEDTLS_MD_SHA384:0:0:0:0:0
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]16
17Certificate Request check Server1 SHA512
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]18depends_on:MBEDTLS_HAS_ALG_SHA_512_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]19x509_csr_check:"data_files/server1.key":"data_files/server1.req.sha512":MBEDTLS_MD_SHA512:0:0:0:0:0
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]20
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]21Certificate Request check Server1 MD5
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]22depends_on:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]23x509_csr_check:"data_files/server1.key":"data_files/server1.req.md5":MBEDTLS_MD_MD5:0:0:0:0:0
Manuel Pégourié-Gonnardc5ce83a2014-03-28 12:46:44 +0100[diff] [blame]24
25Certificate Request check Server1 key_usage
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]26depends_on:MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]27x509_csr_check:"data_files/server1.key":"data_files/server1.req.key_usage":MBEDTLS_MD_SHA1:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION | MBEDTLS_X509_KU_KEY_ENCIPHERMENT:1:0:0:0
Andres Amaya Garcia7067f812018-09-26 10:51:16 +0100[diff] [blame]28
Neil Armstrong9fb92032022-03-16 17:16:46 +0100[diff] [blame]29Certificate Request check opaque Server1 key_usage
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]30depends_on:MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Neil Armstrong9fb92032022-03-16 17:16:46 +0100[diff] [blame]31x509_csr_check_opaque:"data_files/server1.key":MBEDTLS_MD_SHA1:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION:0
32
Andres Amaya Garcia7067f812018-09-26 10:51:16 +0100[diff] [blame]33Certificate Request check Server1 key_usage empty
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]34depends_on:MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]35x509_csr_check:"data_files/server1.key":"data_files/server1.req.key_usage_empty":MBEDTLS_MD_SHA1:0:1:0:0:0
Manuel Pégourié-Gonnardc5ce83a2014-03-28 12:46:44 +0100[diff] [blame]36
37Certificate Request check Server1 ns_cert_type
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]38depends_on:MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]39x509_csr_check:"data_files/server1.key":"data_files/server1.req.cert_type":MBEDTLS_MD_SHA1:0:0:MBEDTLS_X509_NS_CERT_TYPE_SSL_SERVER:1:0
Andres Amaya Garcia7067f812018-09-26 10:51:16 +0100[diff] [blame]40
41Certificate Request check Server1 ns_cert_type empty
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]42depends_on:MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]43x509_csr_check:"data_files/server1.key":"data_files/server1.req.cert_type_empty":MBEDTLS_MD_SHA1:0:0:0:1:0
Manuel Pégourié-Gonnardc5ce83a2014-03-28 12:46:44 +0100[diff] [blame]44
45Certificate Request check Server1 key_usage + ns_cert_type
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]46depends_on:MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]47x509_csr_check:"data_files/server1.key":"data_files/server1.req.ku-ct":MBEDTLS_MD_SHA1:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION | MBEDTLS_X509_KU_KEY_ENCIPHERMENT:1:MBEDTLS_X509_NS_CERT_TYPE_SSL_SERVER:1:0
Manuel Pégourié-Gonnardc5ce83a2014-03-28 12:46:44 +0100[diff] [blame]48
49Certificate Request check Server5 ECDSA, key_usage
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]50depends_on:MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_ECDSA_C:MBEDTLS_ECDSA_DETERMINISTIC:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Valerio Setti48e8fc72022-10-19 15:14:29 +0200[diff] [blame]51x509_csr_check:"data_files/server5.key":"data_files/server5.req.ku.sha1":MBEDTLS_MD_SHA1:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION:1:0:0:0
52
53Certificate Request check Server1, set_extension
54depends_on:MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
55x509_csr_check:"data_files/server1.key":"data_files/server1.req.sha256.ext":MBEDTLS_MD_SHA256:0:0:0:0:1
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]56
Andrzej Kurek5f7bad32018-11-19 10:12:37 -0500[diff] [blame]57Certificate Request check opaque Server5 ECDSA, key_usage
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]58depends_on:MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Andrzej Kurek5f7bad32018-11-19 10:12:37 -0500[diff] [blame]59x509_csr_check_opaque:"data_files/server5.key":MBEDTLS_MD_SHA256:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION:0
60
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]61Certificate write check Server1 SHA1
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]62depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]63x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"data_files/server1.crt":0:0:"data_files/test-ca.crt"
Manuel Pégourié-Gonnard6c1a73e2014-03-28 14:03:22 +0100[diff] [blame]64
Werner Lewisacd01e52022-05-10 12:23:13 +0100[diff] [blame]65Certificate write check Server1 SHA1, not before 1970
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]66depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]67x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"19700210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"":0:0:"data_files/test-ca.crt"
Werner Lewisacd01e52022-05-10 12:23:13 +0100[diff] [blame]68
69Certificate write check Server1 SHA1, not after 2050
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]70depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]71x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20500210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"":0:0:"data_files/test-ca.crt"
Werner Lewisacd01e52022-05-10 12:23:13 +0100[diff] [blame]72
73Certificate write check Server1 SHA1, not before 1970, not after 2050
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]74depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]75x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"19700210144406":"20500210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"":0:0:"data_files/test-ca.crt"
Werner Lewisacd01e52022-05-10 12:23:13 +0100[diff] [blame]76
77Certificate write check Server1 SHA1, not before 2050, not after 2059
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]78depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]79x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20500210144406":"20590210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"":0:0:"data_files/test-ca.crt"
Werner Lewisacd01e52022-05-10 12:23:13 +0100[diff] [blame]80
Manuel Pégourié-Gonnard6c1a73e2014-03-28 14:03:22 +0100[diff] [blame]81Certificate write check Server1 SHA1, key_usage
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]82depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]83x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION | MBEDTLS_X509_KU_KEY_ENCIPHERMENT:1:"NULL":0:0:1:-1:"data_files/server1.key_usage.crt":0:0:"data_files/test-ca.crt"
Nicholas Wilsonca841d32015-11-13 14:22:36 +0000[diff] [blame]84
85Certificate write check Server1 SHA1, one ext_key_usage
86depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]87x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20110212144406":"20210212144406":MBEDTLS_MD_SHA1:0:0:"serverAuth":0:0:1:-1:"data_files/server1.key_ext_usage.crt":0:0:"data_files/test-ca.crt"
Nicholas Wilsonca841d32015-11-13 14:22:36 +0000[diff] [blame]88
89Certificate write check Server1 SHA1, two ext_key_usages
90depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]91x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20110212144406":"20210212144406":MBEDTLS_MD_SHA1:0:0:"codeSigning,timeStamping":0:0:1:-1:"data_files/server1.key_ext_usages.crt":0:0:"data_files/test-ca.crt"
Manuel Pégourié-Gonnard6c1a73e2014-03-28 14:03:22 +0100[diff] [blame]92
93Certificate write check Server1 SHA1, ns_cert_type
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]94depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]95x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":MBEDTLS_X509_NS_CERT_TYPE_SSL_SERVER:1:1:-1:"data_files/server1.cert_type.crt":0:0:"data_files/test-ca.crt"
Manuel Pégourié-Gonnard6c1a73e2014-03-28 14:03:22 +0100[diff] [blame]96
97Certificate write check Server1 SHA1, version 1
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]98depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]99x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:MBEDTLS_X509_CRT_VERSION_1:"data_files/server1.v1.crt":0:0:"data_files/test-ca.crt"
Darren Krahne560be32020-09-21 17:40:50 -0700[diff] [blame]100
101Certificate write check Server1 SHA1, CA
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]102depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]103x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"data_files/server1.ca.crt":0:1:"data_files/test-ca.crt"
Hanno Becker418a6222017-09-14 07:51:28 +0100[diff] [blame]104
105Certificate write check Server1 SHA1, RSA_ALT
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]106depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]107x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:0:-1:"data_files/server1.noauthid.crt":1:0:"data_files/test-ca.crt"
Hanno Becker418a6222017-09-14 07:51:28 +0100[diff] [blame]108
109Certificate write check Server1 SHA1, RSA_ALT, key_usage
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]110depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]111x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION | MBEDTLS_X509_KU_KEY_ENCIPHERMENT:1:"NULL":0:0:0:-1:"data_files/server1.key_usage_noauthid.crt":1:0:"data_files/test-ca.crt"
Hanno Becker418a6222017-09-14 07:51:28 +0100[diff] [blame]112
113Certificate write check Server1 SHA1, RSA_ALT, ns_cert_type
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]114depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]115x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":MBEDTLS_X509_NS_CERT_TYPE_SSL_SERVER:1:0:-1:"data_files/server1.cert_type_noauthid.crt":1:0:"data_files/test-ca.crt"
Hanno Becker418a6222017-09-14 07:51:28 +0100[diff] [blame]116
117Certificate write check Server1 SHA1, RSA_ALT, version 1
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]118depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]119x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:0:MBEDTLS_X509_CRT_VERSION_1:"data_files/server1.v1.crt":1:0:"data_files/test-ca.crt"
Darren Krahne560be32020-09-21 17:40:50 -0700[diff] [blame]120
121Certificate write check Server1 SHA1, RSA_ALT, CA
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]122depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]123x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:0:-1:"data_files/server1.ca_noauthid.crt":1:1:"data_files/test-ca.crt"
Ron Eldor9eeb8612019-02-12 15:03:42 +0200[diff] [blame]124
Neil Armstrong98f899c2022-03-16 17:42:42 +0100[diff] [blame]125Certificate write check Server1 SHA1, Opaque
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]126depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_USE_PSA_CRYPTO
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]127x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"data_files/server1.crt":2:0:"data_files/test-ca.crt"
Neil Armstrong98f899c2022-03-16 17:42:42 +0100[diff] [blame]128
129Certificate write check Server1 SHA1, Opaque, key_usage
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]130depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_USE_PSA_CRYPTO
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]131x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION | MBEDTLS_X509_KU_KEY_ENCIPHERMENT:1:"NULL":0:0:1:-1:"data_files/server1.key_usage.crt":2:0:"data_files/test-ca.crt"
Neil Armstrong98f899c2022-03-16 17:42:42 +0100[diff] [blame]132
133Certificate write check Server1 SHA1, Opaque, ns_cert_type
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]134depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_USE_PSA_CRYPTO
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]135x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":MBEDTLS_X509_NS_CERT_TYPE_SSL_SERVER:1:1:-1:"data_files/server1.cert_type.crt":2:0:"data_files/test-ca.crt"
Neil Armstrong98f899c2022-03-16 17:42:42 +0100[diff] [blame]136
137Certificate write check Server1 SHA1, Opaque, version 1
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]138depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_USE_PSA_CRYPTO
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]139x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:MBEDTLS_X509_CRT_VERSION_1:"data_files/server1.v1.crt":2:0:"data_files/test-ca.crt"
Neil Armstrong98f899c2022-03-16 17:42:42 +0100[diff] [blame]140
141Certificate write check Server1 SHA1, Opaque, CA
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]142depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_USE_PSA_CRYPTO
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]143x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"data_files/server1.ca.crt":2:1:"data_files/test-ca.crt"
Neil Armstrong6ce6dd92022-03-17 09:38:50 +0100[diff] [blame]144
Valerio Setti856cec42023-01-12 14:56:54 +0100[diff] [blame]145Certificate write check Server1 SHA1, Full length serial
146depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
147x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"112233445566778899aabbccddeeff0011223344":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"data_files/server1.long_serial.crt":0:0:"data_files/test-ca.crt"
148
149Certificate write check Server1 SHA1, Serial starting with 0x80
150depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
151x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"8011223344":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"data_files/server1.80serial.crt":0:0:"data_files/test-ca.crt"
152
Valerio Setti18b9b032023-01-27 11:47:57 +0100[diff] [blame^]153Certificate write check Server1 SHA1, All 0xFF full length serial
154depends_on:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA_BASED_ON_USE_PSA
155x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"ffffffffffffffffffffffffffffffff":"20190210144406":"20290210144406":MBEDTLS_MD_SHA1:0:0:"NULL":0:0:1:-1:"data_files/server1.long_serial_FF.crt":0:0:"data_files/test-ca.crt"
156
Neil Armstrong6ce6dd92022-03-17 09:38:50 +0100[diff] [blame]157Certificate write check Server5 ECDSA
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]158depends_on:MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_ECDSA_C:MBEDTLS_ECDSA_DETERMINISTIC:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]159x509_crt_check:"data_files/server5.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca2.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=Polarssl Test EC CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA256:0:0:"NULL":0:0:1:-1:"data_files/server5.crt":0:0:"data_files/test-ca2.crt"
Neil Armstrong6ce6dd92022-03-17 09:38:50 +0100[diff] [blame]160
161Certificate write check Server5 ECDSA, Opaque
Przemek Stekiel76b753b2022-08-09 10:54:45 +0200[diff] [blame]162depends_on:MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA_BASED_ON_USE_PSA:MBEDTLS_ECDSA_C:MBEDTLS_ECDSA_DETERMINISTIC:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_USE_PSA_CRYPTO
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]163x509_crt_check:"data_files/server5.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca2.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=Polarssl Test EC CA":"01":"20190210144406":"20290210144406":MBEDTLS_MD_SHA256:0:0:"NULL":0:0:1:-1:"":2:0:"data_files/test-ca2.crt"
Paul Bakker8dcb2d72014-08-08 12:22:30 +0200[diff] [blame]164
165X509 String to Names #1
Werner Lewisb33dacd2022-05-20 12:48:46 +0100[diff] [blame]166mbedtls_x509_string_to_names:"C=NL,O=Offspark\, Inc., OU=PolarSSL":"C=NL, O=Offspark\, Inc., OU=PolarSSL":0
Paul Bakker8dcb2d72014-08-08 12:22:30 +0200[diff] [blame]167
168X509 String to Names #2
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]169mbedtls_x509_string_to_names:"C=NL, O=Offspark, Inc., OU=PolarSSL":"":MBEDTLS_ERR_X509_UNKNOWN_OID
Paul Bakker8dcb2d72014-08-08 12:22:30 +0200[diff] [blame]170
171X509 String to Names #3 (Name precisely 255 bytes)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]172mbedtls_x509_string_to_names:"C=NL, O=123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345,OU=PolarSSL":"C=NL, O=123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345, OU=PolarSSL":0
Paul Bakker8dcb2d72014-08-08 12:22:30 +0200[diff] [blame]173
174X509 String to Names #4 (Name larger than 255 bytes)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]175mbedtls_x509_string_to_names:"C=NL, O=1234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456, OU=PolarSSL":"":MBEDTLS_ERR_X509_INVALID_NAME
Paul Bakker8dcb2d72014-08-08 12:22:30 +0200[diff] [blame]176
177X509 String to Names #5 (Escape non-allowed characters)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]178mbedtls_x509_string_to_names:"C=NL, O=Offspark\a Inc., OU=PolarSSL":"":MBEDTLS_ERR_X509_INVALID_NAME
Paul Bakker8dcb2d72014-08-08 12:22:30 +0200[diff] [blame]179
180X509 String to Names #6 (Escape at end)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]181mbedtls_x509_string_to_names:"C=NL, O=Offspark\":"":MBEDTLS_ERR_X509_INVALID_NAME
Valerio Settiaad8dbd2023-01-09 17:20:25 +0100[diff] [blame]182
183Check max serial length
Valerio Settiea19d2d2023-01-09 17:21:17 +0100[diff] [blame]184x509_set_serial_check: