]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a6a2dd9) | patch
Add test cases for verification of time stamping certificates
authorLutz Jaenicke <ljaenicke@phoenixcontact.com>
Fri, 17 Jun 2022 11:11:31 +0000 (13:11 +0200)
committerPauli <pauli@openssl.org>
Wed, 22 Jun 2022 06:58:08 +0000 (16:58 +1000)
commit386ab7f1fefdd77521e670d9593e9894e2774be0
treefbbd7e96ac2ed2855506c57af42971424de3776dtree | snapshot
parenta6a2dd9f60b3f3e93de1337ee84f9e8f33bc86a8commit | diff
Add test cases for verification of time stamping certificates

Test makes sure, that both time stamping certificate according to rfc3161 (no
requirements for keyUsage extension) and according to CAB forum (keyUsage
extension must be digitalSignature and be set critical) are accepted. Misuse
cases as stated in CAB forum are rejected, only exeption is a missing
"critial" flag on keyUsage.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18597)
test/certs/ee-timestampsign-CABforum-anyextkeyusage.pem [new file with mode: 0644] blob
test/certs/ee-timestampsign-CABforum-crlsign.pem [new file with mode: 0644] blob
test/certs/ee-timestampsign-CABforum-keycertsign.pem [new file with mode: 0644] blob
test/certs/ee-timestampsign-CABforum-noncritxku.pem [new file with mode: 0644] blob
test/certs/ee-timestampsign-CABforum-serverauth.pem [new file with mode: 0644] blob
test/certs/ee-timestampsign-CABforum.pem [new file with mode: 0644] blob
test/certs/ee-timestampsign-rfc3161-digsig.pem [new file with mode: 0644] blob
test/certs/ee-timestampsign-rfc3161-noncritxku.pem [new file with mode: 0644] blob
test/certs/ee-timestampsign-rfc3161.pem [new file with mode: 0644] blob
test/certs/setup.sh diff | blob | blame | history
test/recipes/25-test_verify.t diff | blob | blame | history
A mirror of the official openssl repository