2
0

03-custom_verify.conf 5.8 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238
  1. # Generated with generate_ssl_tests.pl
  2. num_tests = 9
  3. test-0 = 0-verify-success
  4. test-1 = 1-verify-custom-reject
  5. test-2 = 2-verify-custom-allow
  6. test-3 = 3-noverify-success
  7. test-4 = 4-noverify-ignore-custom-reject
  8. test-5 = 5-noverify-accept-custom-allow
  9. test-6 = 6-verify-fail-no-root
  10. test-7 = 7-verify-custom-success-no-root
  11. test-8 = 8-verify-custom-fail-no-root
  12. # ===========================================================
  13. [0-verify-success]
  14. ssl_conf = 0-verify-success-ssl
  15. [0-verify-success-ssl]
  16. server = 0-verify-success-server
  17. client = 0-verify-success-client
  18. [0-verify-success-server]
  19. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  20. CipherString = DEFAULT
  21. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  22. [0-verify-success-client]
  23. CipherString = DEFAULT
  24. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  25. VerifyMode = Peer
  26. [test-0]
  27. ExpectedResult = Success
  28. # ===========================================================
  29. [1-verify-custom-reject]
  30. ssl_conf = 1-verify-custom-reject-ssl
  31. [1-verify-custom-reject-ssl]
  32. server = 1-verify-custom-reject-server
  33. client = 1-verify-custom-reject-client
  34. [1-verify-custom-reject-server]
  35. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  36. CipherString = DEFAULT
  37. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  38. [1-verify-custom-reject-client]
  39. CipherString = DEFAULT
  40. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  41. VerifyMode = Peer
  42. [test-1]
  43. ExpectedClientAlert = HandshakeFailure
  44. ExpectedResult = ClientFail
  45. client = 1-verify-custom-reject-client-extra
  46. [1-verify-custom-reject-client-extra]
  47. VerifyCallback = RejectAll
  48. # ===========================================================
  49. [2-verify-custom-allow]
  50. ssl_conf = 2-verify-custom-allow-ssl
  51. [2-verify-custom-allow-ssl]
  52. server = 2-verify-custom-allow-server
  53. client = 2-verify-custom-allow-client
  54. [2-verify-custom-allow-server]
  55. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  56. CipherString = DEFAULT
  57. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  58. [2-verify-custom-allow-client]
  59. CipherString = DEFAULT
  60. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  61. VerifyMode = Peer
  62. [test-2]
  63. ExpectedResult = Success
  64. client = 2-verify-custom-allow-client-extra
  65. [2-verify-custom-allow-client-extra]
  66. VerifyCallback = AcceptAll
  67. # ===========================================================
  68. [3-noverify-success]
  69. ssl_conf = 3-noverify-success-ssl
  70. [3-noverify-success-ssl]
  71. server = 3-noverify-success-server
  72. client = 3-noverify-success-client
  73. [3-noverify-success-server]
  74. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  75. CipherString = DEFAULT
  76. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  77. [3-noverify-success-client]
  78. CipherString = DEFAULT
  79. [test-3]
  80. ExpectedResult = Success
  81. # ===========================================================
  82. [4-noverify-ignore-custom-reject]
  83. ssl_conf = 4-noverify-ignore-custom-reject-ssl
  84. [4-noverify-ignore-custom-reject-ssl]
  85. server = 4-noverify-ignore-custom-reject-server
  86. client = 4-noverify-ignore-custom-reject-client
  87. [4-noverify-ignore-custom-reject-server]
  88. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  89. CipherString = DEFAULT
  90. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  91. [4-noverify-ignore-custom-reject-client]
  92. CipherString = DEFAULT
  93. [test-4]
  94. ExpectedResult = Success
  95. client = 4-noverify-ignore-custom-reject-client-extra
  96. [4-noverify-ignore-custom-reject-client-extra]
  97. VerifyCallback = RejectAll
  98. # ===========================================================
  99. [5-noverify-accept-custom-allow]
  100. ssl_conf = 5-noverify-accept-custom-allow-ssl
  101. [5-noverify-accept-custom-allow-ssl]
  102. server = 5-noverify-accept-custom-allow-server
  103. client = 5-noverify-accept-custom-allow-client
  104. [5-noverify-accept-custom-allow-server]
  105. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  106. CipherString = DEFAULT
  107. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  108. [5-noverify-accept-custom-allow-client]
  109. CipherString = DEFAULT
  110. [test-5]
  111. ExpectedResult = Success
  112. client = 5-noverify-accept-custom-allow-client-extra
  113. [5-noverify-accept-custom-allow-client-extra]
  114. VerifyCallback = AcceptAll
  115. # ===========================================================
  116. [6-verify-fail-no-root]
  117. ssl_conf = 6-verify-fail-no-root-ssl
  118. [6-verify-fail-no-root-ssl]
  119. server = 6-verify-fail-no-root-server
  120. client = 6-verify-fail-no-root-client
  121. [6-verify-fail-no-root-server]
  122. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  123. CipherString = DEFAULT
  124. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  125. [6-verify-fail-no-root-client]
  126. CipherString = DEFAULT
  127. VerifyMode = Peer
  128. [test-6]
  129. ExpectedClientAlert = UnknownCA
  130. ExpectedResult = ClientFail
  131. # ===========================================================
  132. [7-verify-custom-success-no-root]
  133. ssl_conf = 7-verify-custom-success-no-root-ssl
  134. [7-verify-custom-success-no-root-ssl]
  135. server = 7-verify-custom-success-no-root-server
  136. client = 7-verify-custom-success-no-root-client
  137. [7-verify-custom-success-no-root-server]
  138. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  139. CipherString = DEFAULT
  140. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  141. [7-verify-custom-success-no-root-client]
  142. CipherString = DEFAULT
  143. VerifyMode = Peer
  144. [test-7]
  145. ExpectedResult = Success
  146. client = 7-verify-custom-success-no-root-client-extra
  147. [7-verify-custom-success-no-root-client-extra]
  148. VerifyCallback = AcceptAll
  149. # ===========================================================
  150. [8-verify-custom-fail-no-root]
  151. ssl_conf = 8-verify-custom-fail-no-root-ssl
  152. [8-verify-custom-fail-no-root-ssl]
  153. server = 8-verify-custom-fail-no-root-server
  154. client = 8-verify-custom-fail-no-root-client
  155. [8-verify-custom-fail-no-root-server]
  156. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  157. CipherString = DEFAULT
  158. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  159. [8-verify-custom-fail-no-root-client]
  160. CipherString = DEFAULT
  161. VerifyMode = Peer
  162. [test-8]
  163. ExpectedClientAlert = HandshakeFailure
  164. ExpectedResult = ClientFail
  165. client = 8-verify-custom-fail-no-root-client-extra
  166. [8-verify-custom-fail-no-root-client-extra]
  167. VerifyCallback = RejectAll