[thirdparty/openssl.git] / test / ssl-tests / 01-simple.cnf

# Generated with generate_ssl_tests.pl

num_tests = 3

test-0 = 0-default
test-1 = 1-Server signature algorithms bug
test-2 = 2-verify-cert
# ===========================================================

[0-default]
ssl_conf = 0-default-ssl

[0-default-ssl]
server = 0-default-server
client = 0-default-client

[0-default-server]
Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
CipherString = DEFAULT
PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem

[0-default-client]
CipherString = DEFAULT
VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
VerifyMode = Peer

[test-0]
ExpectedResult = Success


# ===========================================================

[1-Server signature algorithms bug]
ssl_conf = 1-Server signature algorithms bug-ssl

[1-Server signature algorithms bug-ssl]
server = 1-Server signature algorithms bug-server
client = 1-Server signature algorithms bug-client

[1-Server signature algorithms bug-server]
Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
CipherString = DEFAULT
ClientSignatureAlgorithms = PSS+SHA512:RSA+SHA512
PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem

[1-Server signature algorithms bug-client]
CipherString = DEFAULT
SignatureAlgorithms = PSS+SHA256:RSA+SHA256
VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
VerifyMode = Peer

[test-1]
ExpectedResult = Success


# ===========================================================

[2-verify-cert]
ssl_conf = 2-verify-cert-ssl

[2-verify-cert-ssl]
server = 2-verify-cert-server
client = 2-verify-cert-client

[2-verify-cert-server]
Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
CipherString = DEFAULT
PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem

[2-verify-cert-client]
CipherString = DEFAULT
VerifyMode = Peer

[test-2]
ExpectedClientAlert = UnknownCA
ExpectedResult = ClientFail
Commit	Line	Data
453dfd8d EK	1	# Generated with generate_ssl_tests.pl
453dfd8d EK	2
9cf847d7	3	num_tests = 3
453dfd8d EK	4
453dfd8d EK	5	test-0 = 0-default
9cf847d7 DSH	6	test-1 = 1-Server signature algorithms bug
9cf847d7 DSH	7	test-2 = 2-verify-cert
453dfd8d EK	8	# ===========================================================
	9
	10	[0-default]
	11	ssl_conf = 0-default-ssl
	12
	13	[0-default-ssl]
	14	server = 0-default-server
	15	client = 0-default-client
	16
	17	[0-default-server]
	18	Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
	19	CipherString = DEFAULT
	20	PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
	21
453dfd8d EK	22	[0-default-client]
	23	CipherString = DEFAULT
	24	VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
	25	VerifyMode = Peer
	26
453dfd8d EK	27	[test-0]
	28	ExpectedResult = Success
	29
	30
	31	# ===========================================================
	32
9cf847d7 DSH	33	[1-Server signature algorithms bug]
9cf847d7 DSH	34	ssl_conf = 1-Server signature algorithms bug-ssl
453dfd8d	35
9cf847d7 DSH	36	[1-Server signature algorithms bug-ssl]
	37	server = 1-Server signature algorithms bug-server
	38	client = 1-Server signature algorithms bug-client
453dfd8d	39
9cf847d7	40	[1-Server signature algorithms bug-server]
453dfd8d EK	41	Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
453dfd8d EK	42	CipherString = DEFAULT
d8979bdd	43	ClientSignatureAlgorithms = PSS+SHA512:RSA+SHA512
453dfd8d EK	44	PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
453dfd8d EK	45
9cf847d7	46	[1-Server signature algorithms bug-client]
453dfd8d	47	CipherString = DEFAULT
d8979bdd	48	SignatureAlgorithms = PSS+SHA256:RSA+SHA256
9cf847d7	49	VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
453dfd8d EK	50	VerifyMode = Peer
453dfd8d EK	51
453dfd8d	52	[test-1]
9cf847d7 DSH	53	ExpectedResult = Success
	54
	55
	56	# ===========================================================
	57
	58	[2-verify-cert]
	59	ssl_conf = 2-verify-cert-ssl
	60
	61	[2-verify-cert-ssl]
	62	server = 2-verify-cert-server
	63	client = 2-verify-cert-client
	64
	65	[2-verify-cert-server]
	66	Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
	67	CipherString = DEFAULT
	68	PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
	69
	70	[2-verify-cert-client]
	71	CipherString = DEFAULT
	72	VerifyMode = Peer
	73
	74	[test-2]
9f48bbac	75	ExpectedClientAlert = UnknownCA
453dfd8d EK	76	ExpectedResult = ClientFail
	77
	78