1 # Generated with generate_ssl_tests.pl
5 test-0 = 0-ECDSA CipherString Selection
6 test-1 = 1-RSA CipherString Selection
7 test-2 = 2-ECDSA CipherString Selection, no ECDSA certificate
8 test-3 = 3-ECDSA Signature Algorithm Selection
9 test-4 = 4-ECDSA Signature Algorithm Selection SHA384
10 test-5 = 5-ECDSA Signature Algorithm Selection, no ECDSA certificate
11 test-6 = 6-RSA Signature Algorithm Selection
12 test-7 = 7-RSA-PSS Signature Algorithm Selection
13 # ===========================================================
15 [0-ECDSA CipherString Selection]
16 ssl_conf = 0-ECDSA CipherString Selection-ssl
18 [0-ECDSA CipherString Selection-ssl]
19 server = 0-ECDSA CipherString Selection-server
20 client = 0-ECDSA CipherString Selection-client
22 [0-ECDSA CipherString Selection-server]
23 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
24 CipherString = DEFAULT
25 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
26 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
28 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
30 [0-ECDSA CipherString Selection-client]
32 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
36 ExpectedResult = Success
37 ExpectedServerCertType = P-256
38 ExpectedServerSignType = EC
41 # ===========================================================
43 [1-RSA CipherString Selection]
44 ssl_conf = 1-RSA CipherString Selection-ssl
46 [1-RSA CipherString Selection-ssl]
47 server = 1-RSA CipherString Selection-server
48 client = 1-RSA CipherString Selection-client
50 [1-RSA CipherString Selection-server]
51 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
52 CipherString = DEFAULT
53 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
54 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
56 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
58 [1-RSA CipherString Selection-client]
60 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
64 ExpectedResult = Success
65 ExpectedServerCertType = RSA
66 ExpectedServerSignType = RSA-PSS
69 # ===========================================================
71 [2-ECDSA CipherString Selection, no ECDSA certificate]
72 ssl_conf = 2-ECDSA CipherString Selection, no ECDSA certificate-ssl
74 [2-ECDSA CipherString Selection, no ECDSA certificate-ssl]
75 server = 2-ECDSA CipherString Selection, no ECDSA certificate-server
76 client = 2-ECDSA CipherString Selection, no ECDSA certificate-client
78 [2-ECDSA CipherString Selection, no ECDSA certificate-server]
79 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
80 CipherString = DEFAULT
81 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
83 [2-ECDSA CipherString Selection, no ECDSA certificate-client]
85 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
89 ExpectedResult = ServerFail
92 # ===========================================================
94 [3-ECDSA Signature Algorithm Selection]
95 ssl_conf = 3-ECDSA Signature Algorithm Selection-ssl
97 [3-ECDSA Signature Algorithm Selection-ssl]
98 server = 3-ECDSA Signature Algorithm Selection-server
99 client = 3-ECDSA Signature Algorithm Selection-client
101 [3-ECDSA Signature Algorithm Selection-server]
102 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
103 CipherString = DEFAULT
104 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
105 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
106 MaxProtocol = TLSv1.2
107 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
109 [3-ECDSA Signature Algorithm Selection-client]
110 CipherString = DEFAULT
111 SignatureAlgorithms = ECDSA+SHA256
112 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
116 ExpectedResult = Success
117 ExpectedServerCertType = P-256
118 ExpectedServerSignHash = SHA256
119 ExpectedServerSignType = EC
122 # ===========================================================
124 [4-ECDSA Signature Algorithm Selection SHA384]
125 ssl_conf = 4-ECDSA Signature Algorithm Selection SHA384-ssl
127 [4-ECDSA Signature Algorithm Selection SHA384-ssl]
128 server = 4-ECDSA Signature Algorithm Selection SHA384-server
129 client = 4-ECDSA Signature Algorithm Selection SHA384-client
131 [4-ECDSA Signature Algorithm Selection SHA384-server]
132 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
133 CipherString = DEFAULT
134 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
135 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
136 MaxProtocol = TLSv1.2
137 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
139 [4-ECDSA Signature Algorithm Selection SHA384-client]
140 CipherString = DEFAULT
141 SignatureAlgorithms = ECDSA+SHA384
142 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
146 ExpectedResult = Success
147 ExpectedServerCertType = P-256
148 ExpectedServerSignHash = SHA384
149 ExpectedServerSignType = EC
152 # ===========================================================
154 [5-ECDSA Signature Algorithm Selection, no ECDSA certificate]
155 ssl_conf = 5-ECDSA Signature Algorithm Selection, no ECDSA certificate-ssl
157 [5-ECDSA Signature Algorithm Selection, no ECDSA certificate-ssl]
158 server = 5-ECDSA Signature Algorithm Selection, no ECDSA certificate-server
159 client = 5-ECDSA Signature Algorithm Selection, no ECDSA certificate-client
161 [5-ECDSA Signature Algorithm Selection, no ECDSA certificate-server]
162 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
163 CipherString = DEFAULT
164 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
166 [5-ECDSA Signature Algorithm Selection, no ECDSA certificate-client]
167 CipherString = DEFAULT
168 SignatureAlgorithms = ECDSA+SHA256
169 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
173 ExpectedResult = ServerFail
176 # ===========================================================
178 [6-RSA Signature Algorithm Selection]
179 ssl_conf = 6-RSA Signature Algorithm Selection-ssl
181 [6-RSA Signature Algorithm Selection-ssl]
182 server = 6-RSA Signature Algorithm Selection-server
183 client = 6-RSA Signature Algorithm Selection-client
185 [6-RSA Signature Algorithm Selection-server]
186 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
187 CipherString = DEFAULT
188 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
189 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
190 MaxProtocol = TLSv1.2
191 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
193 [6-RSA Signature Algorithm Selection-client]
194 CipherString = DEFAULT
195 SignatureAlgorithms = RSA+SHA256
196 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
200 ExpectedResult = Success
201 ExpectedServerCertType = RSA
202 ExpectedServerSignHash = SHA256
203 ExpectedServerSignType = RSA
206 # ===========================================================
208 [7-RSA-PSS Signature Algorithm Selection]
209 ssl_conf = 7-RSA-PSS Signature Algorithm Selection-ssl
211 [7-RSA-PSS Signature Algorithm Selection-ssl]
212 server = 7-RSA-PSS Signature Algorithm Selection-server
213 client = 7-RSA-PSS Signature Algorithm Selection-client
215 [7-RSA-PSS Signature Algorithm Selection-server]
216 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
217 CipherString = DEFAULT
218 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
219 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
220 MaxProtocol = TLSv1.2
221 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
223 [7-RSA-PSS Signature Algorithm Selection-client]
224 CipherString = DEFAULT
225 SignatureAlgorithms = RSA-PSS+SHA256
226 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
230 ExpectedResult = Success
231 ExpectedServerCertType = RSA
232 ExpectedServerSignHash = SHA256
233 ExpectedServerSignType = RSA-PSS