blob: e9f12bec0ffc263105dbeeb4701319f9d0fbd1d1 [file] [log] [blame]
Hanno Becker2389d162019-02-14 12:52:47 +00001X509 CRT information #1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +02003x509_cert_info:"data_files/server1.crt":"cert. version \: 3\nserial number \: 01\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Paul Bakker37940d9f2009-07-10 22:38:58 +00004
Hanno Becker2389d162019-02-14 12:52:47 +00005X509 CRT information #1 (DER)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01006depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +02007x509_cert_info:"data_files/server1.crt.der":"cert. version \: 3\nserial number \: 01\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Hanno Becker462c3e52019-01-31 10:55:42 +00008
Hanno Becker2389d162019-02-14 12:52:47 +00009X509 CRT information #2
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010010depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +020011x509_cert_info:"data_files/server2.crt":"cert. version \: 3\nserial number \: 02\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Paul Bakker37940d9f2009-07-10 22:38:58 +000012
Hanno Becker2389d162019-02-14 12:52:47 +000013X509 CRT information #2 (DER)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010014depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +020015x509_cert_info:"data_files/server2.crt.der":"cert. version \: 3\nserial number \: 02\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Hanno Becker462c3e52019-01-31 10:55:42 +000016
Hanno Becker2389d162019-02-14 12:52:47 +000017X509 CRT information #3
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010018depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +020019x509_cert_info:"data_files/test-ca.crt":"cert. version \: 3\nserial number \: 03\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nissued on \: 2019-02-10 14\:44\:00\nexpires on \: 2029-02-10 14\:44\:00\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\n"
Paul Bakker37940d9f2009-07-10 22:38:58 +000020
Hanno Becker2389d162019-02-14 12:52:47 +000021X509 CRT information #3 (DER)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010022depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +020023x509_cert_info:"data_files/test-ca.crt.der":"cert. version \: 3\nserial number \: 03\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nissued on \: 2019-02-10 14\:44\:00\nexpires on \: 2029-02-10 14\:44\:00\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\n"
Hanno Becker462c3e52019-01-31 10:55:42 +000024
Hanno Becker2389d162019-02-14 12:52:47 +000025X509 CRT information MD5 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010026depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_MD5
Hanno Becker2e0f71f2019-06-03 14:14:04 +010027x509_cert_info:"data_files/cert_md5.crt":"cert. version \: 3\nserial number \: 06\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Cert MD5\nissued on \: 2000-01-01 12\:12\:12\nexpires on \: 2030-01-01 12\:12\:12\nsigned using \: RSA with MD5\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +000028
Hanno Becker2389d162019-02-14 12:52:47 +000029X509 CRT information SHA1 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010030depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +020031x509_cert_info:"data_files/cert_sha1.crt":"cert. version \: 3\nserial number \: 07\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Cert SHA1\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +000032
Hanno Becker2389d162019-02-14 12:52:47 +000033X509 CRT information SHA224 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010034depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Ron Eldor9eeb8612019-02-12 15:03:42 +020035x509_cert_info:"data_files/cert_sha224.crt":"cert. version \: 3\nserial number \: 08\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Cert SHA224\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA-224\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +000036
Hanno Becker2389d162019-02-14 12:52:47 +000037X509 CRT information SHA256 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010038depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Ron Eldor9eeb8612019-02-12 15:03:42 +020039x509_cert_info:"data_files/cert_sha256.crt":"cert. version \: 3\nserial number \: 09\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Cert SHA256\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +000040
Hanno Becker2389d162019-02-14 12:52:47 +000041X509 CRT information SHA384 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010042depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA384
Ron Eldor9eeb8612019-02-12 15:03:42 +020043x509_cert_info:"data_files/cert_sha384.crt":"cert. version \: 3\nserial number \: 0A\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Cert SHA384\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA-384\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +000044
Hanno Becker2389d162019-02-14 12:52:47 +000045X509 CRT information SHA512 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010046depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA512
Ron Eldor9eeb8612019-02-12 15:03:42 +020047x509_cert_info:"data_files/cert_sha512.crt":"cert. version \: 3\nserial number \: 0B\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Cert SHA512\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA-512\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +000048
Hanno Becker2389d162019-02-14 12:52:47 +000049X509 CRT information RSA-PSS, SHA1 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010050depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard78117d52014-05-31 17:08:16 +020051x509_cert_info:"data_files/server9.crt":"cert. version \: 3\nserial number \: 16\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2014-01-20 13\:38\:16\nexpires on \: 2024-01-18 13\:38\:16\nsigned using \: RSASSA-PSS (SHA1, MGF1-SHA1, 0xEA)\nRSA key size \: 1024 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnarde76b7502014-01-23 19:15:29 +010052
Hanno Becker2389d162019-02-14 12:52:47 +000053X509 CRT information RSA-PSS, SHA224 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010054depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard78117d52014-05-31 17:08:16 +020055x509_cert_info:"data_files/server9-sha224.crt":"cert. version \: 3\nserial number \: 17\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2014-01-20 13\:57\:36\nexpires on \: 2024-01-18 13\:57\:36\nsigned using \: RSASSA-PSS (SHA224, MGF1-SHA224, 0xE2)\nRSA key size \: 1024 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnarde76b7502014-01-23 19:15:29 +010056
Hanno Becker2389d162019-02-14 12:52:47 +000057X509 CRT information RSA-PSS, SHA256 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010058depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnard78117d52014-05-31 17:08:16 +020059x509_cert_info:"data_files/server9-sha256.crt":"cert. version \: 3\nserial number \: 18\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2014-01-20 13\:57\:45\nexpires on \: 2024-01-18 13\:57\:45\nsigned using \: RSASSA-PSS (SHA256, MGF1-SHA256, 0xDE)\nRSA key size \: 1024 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnarde76b7502014-01-23 19:15:29 +010060
Hanno Becker2389d162019-02-14 12:52:47 +000061X509 CRT information RSA-PSS, SHA384 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010062depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA384
Manuel Pégourié-Gonnard78117d52014-05-31 17:08:16 +020063x509_cert_info:"data_files/server9-sha384.crt":"cert. version \: 3\nserial number \: 19\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2014-01-20 13\:57\:58\nexpires on \: 2024-01-18 13\:57\:58\nsigned using \: RSASSA-PSS (SHA384, MGF1-SHA384, 0xCE)\nRSA key size \: 1024 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnarde76b7502014-01-23 19:15:29 +010064
Hanno Becker2389d162019-02-14 12:52:47 +000065X509 CRT information RSA-PSS, SHA512 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010066depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA512
Manuel Pégourié-Gonnard78117d52014-05-31 17:08:16 +020067x509_cert_info:"data_files/server9-sha512.crt":"cert. version \: 3\nserial number \: 1A\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2014-01-20 13\:58\:12\nexpires on \: 2024-01-18 13\:58\:12\nsigned using \: RSASSA-PSS (SHA512, MGF1-SHA512, 0xBE)\nRSA key size \: 1024 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnard59a75d52014-01-22 10:12:57 +010068
Hanno Becker2389d162019-02-14 12:52:47 +000069X509 CRT information EC, SHA1 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010070depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardb28487d2014-04-01 12:19:09 +020071x509_cert_info:"data_files/server5-sha1.crt":"cert. version \: 3\nserial number \: 12\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2013-09-24 16\:21\:27\nexpires on \: 2023-09-22 16\:21\:27\nsigned using \: ECDSA with SHA1\nEC key size \: 256 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnard6d29ff22013-08-10 09:44:43 +020072
Hanno Becker2389d162019-02-14 12:52:47 +000073X509 CRT information EC, SHA224 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010074depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnardb28487d2014-04-01 12:19:09 +020075x509_cert_info:"data_files/server5-sha224.crt":"cert. version \: 3\nserial number \: 13\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2013-09-24 16\:21\:27\nexpires on \: 2023-09-22 16\:21\:27\nsigned using \: ECDSA with SHA224\nEC key size \: 256 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnard6d29ff22013-08-10 09:44:43 +020076
Hanno Becker2389d162019-02-14 12:52:47 +000077X509 CRT information EC, SHA256 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010078depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardb28487d2014-04-01 12:19:09 +020079x509_cert_info:"data_files/server5.crt":"cert. version \: 3\nserial number \: 09\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2013-09-24 15\:52\:04\nexpires on \: 2023-09-22 15\:52\:04\nsigned using \: ECDSA with SHA256\nEC key size \: 256 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnard6d29ff22013-08-10 09:44:43 +020080
Hanno Becker2389d162019-02-14 12:52:47 +000081X509 CRT information EC, SHA384 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010082depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA384
Manuel Pégourié-Gonnardb28487d2014-04-01 12:19:09 +020083x509_cert_info:"data_files/server5-sha384.crt":"cert. version \: 3\nserial number \: 14\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2013-09-24 16\:21\:27\nexpires on \: 2023-09-22 16\:21\:27\nsigned using \: ECDSA with SHA384\nEC key size \: 256 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnard6d29ff22013-08-10 09:44:43 +020084
Hanno Becker2389d162019-02-14 12:52:47 +000085X509 CRT information EC, SHA512 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010086depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA512
Manuel Pégourié-Gonnardb28487d2014-04-01 12:19:09 +020087x509_cert_info:"data_files/server5-sha512.crt":"cert. version \: 3\nserial number \: 15\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2013-09-24 16\:21\:27\nexpires on \: 2023-09-22 16\:21\:27\nsigned using \: ECDSA with SHA512\nEC key size \: 256 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnard6d29ff22013-08-10 09:44:43 +020088
Hanno Becker2389d162019-02-14 12:52:47 +000089X509 CRT information EC, SHA256 Digest, hardware module name SAN
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010090depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Victor Barpp Gomes47c7a732022-09-29 11:34:23 -030091x509_cert_info:"data_files/server5-othername.crt":"cert. version \: 3\nserial number \: 4D\nissuer name \: C=UK, O=Mbed TLS, CN=Mbed TLS othername SAN\nsubject name \: C=UK, O=Mbed TLS, CN=Mbed TLS othername SAN\nissued on \: 2019-03-24 09\:06\:02\nexpires on \: 2029-03-21 09\:06\:02\nsigned using \: ECDSA with SHA256\nEC key size \: 256 bits\nsubject alt name \:\n otherName \:\n hardware module name \:\n hardware type \: 1.3.6.1.4.1.17.3\n hardware serial number \: 313233343536\n"
Ron Eldorb2dc3fa2019-03-21 13:40:13 +020092
Victor Barpp Gomesd0225af2022-09-29 11:40:20 -030093X509 CRT information EC, SHA256 Digest, binary hardware module name SAN
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +010094depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Victor Barpp Gomesd0225af2022-09-29 11:40:20 -030095x509_cert_info:"data_files/server5-nonprintable_othername.crt":"cert. version \: 3\nserial number \: 4D\nissuer name \: C=UK, O=Mbed TLS, CN=Mbed TLS non-printable othername SAN\nsubject name \: C=UK, O=Mbed TLS, CN=Mbed TLS non-printable othername SAN\nissued on \: 2022-09-06 15\:56\:47\nexpires on \: 2032-09-03 15\:56\:47\nsigned using \: ECDSA with SHA256\nEC key size \: 256 bits\nsubject alt name \:\n otherName \:\n hardware module name \:\n hardware type \: 1.3.6.1.4.1.17.3\n hardware serial number \: 3132338081008180333231\n"
Manuel Pégourié-Gonnard6d29ff22013-08-10 09:44:43 +020096
Andrzej Kureke12b01d2023-01-10 06:47:38 -050097X509 CRT information EC, SHA256 Digest, directoryName SAN
Andrzej Kurekd90376e2023-01-20 07:08:57 -050098depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Andrzej Kurekd3486322023-01-20 05:21:52 -050099x509_cert_info:"data_files/server5-directoryname.crt.der":"cert. version \: 3\nserial number \: 4D\nissuer name \: C=UK, O=Mbed TLS, CN=Mbed TLS directoryName SAN\nsubject name \: C=UK, O=Mbed TLS, CN=Mbed TLS directoryName SAN\nissued on \: 2023-01-10 16\:59\:29\nexpires on \: 2033-01-07 16\:59\:29\nsigned using \: ECDSA with SHA256\nEC key size \: 256 bits\nsubject alt name \:\n directoryName \: C=UK, O=Mbed TLS, CN=Mbed TLS directoryName SAN\n"
Andrzej Kureke12b01d2023-01-10 06:47:38 -0500100
Andrzej Kurek151d85d2023-01-12 08:59:37 -0500101X509 CRT information EC, SHA256 Digest, two directoryName SANs
Andrzej Kurekd90376e2023-01-20 07:08:57 -0500102depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Andrzej Kurekd3486322023-01-20 05:21:52 -0500103x509_cert_info:"data_files/server5-two-directorynames.crt.der":"cert. version \: 3\nserial number \: 4D\nissuer name \: C=UK, O=Mbed TLS, CN=Mbed TLS directoryName SAN\nsubject name \: C=UK, O=Mbed TLS, CN=Mbed TLS directoryName SAN\nissued on \: 2023-01-12 10\:34\:11\nexpires on \: 2033-01-09 10\:34\:11\nsigned using \: ECDSA with SHA256\nEC key size \: 256 bits\nsubject alt name \:\n directoryName \: C=UK, O=Mbed TLS, CN=Mbed TLS directoryName SAN\n directoryName \: O=MALFORM_ME\n"
Andrzej Kurek151d85d2023-01-12 08:59:37 -0500104
Hanno Becker2389d162019-02-14 12:52:47 +0000105X509 CRT information EC, SHA256 Digest, Wisun Fan device
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100106depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Ron Eldor3c4734a2019-03-25 14:05:23 +0200107x509_cert_info:"data_files/server5-fan.crt":"cert. version \: 3\nserial number \: 4D\nissuer name \: C=UK, O=Mbed TLS, CN=Mbed TLS FAN\nsubject name \: C=UK, O=Mbed TLS, CN=Mbed TLS FAN\nissued on \: 2019-03-25 09\:03\:46\nexpires on \: 2029-03-22 09\:03\:46\nsigned using \: ECDSA with SHA256\nEC key size \: 256 bits\next key usage \: Wi-SUN Alliance Field Area Network (FAN)\n"
108
Hanno Becker2389d162019-02-14 12:52:47 +0000109X509 CRT information, NS Cert Type
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100110depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +0200111x509_cert_info:"data_files/server1.cert_type.crt":"cert. version \: 3\nserial number \: 01\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\ncert. type \: SSL Server\n"
Manuel Pégourié-Gonnard919f8f52014-04-01 13:01:11 +0200112
Hanno Becker2389d162019-02-14 12:52:47 +0000113X509 CRT information, Key Usage
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100114depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Ron Eldor9eeb8612019-02-12 15:03:42 +0200115x509_cert_info:"data_files/server1.key_usage.crt":"cert. version \: 3\nserial number \: 01\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nissued on \: 2019-02-10 14\:44\:06\nexpires on \: 2029-02-10 14\:44\:06\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard65c2ddc2014-04-01 14:12:11 +0200116
Hanno Becker2389d162019-02-14 12:52:47 +0000117X509 CRT information, Key Usage with decipherOnly
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100118depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard9a702252015-06-23 10:14:36 +0200119x509_cert_info:"data_files/keyUsage.decipherOnly.crt":"cert. version \: 3\nserial number \: 9B\:13\:CE\:4C\:A5\:6F\:DE\:52\nissuer name \: C=GB, L=Cambridge, O=Default Company Ltd\nsubject name \: C=GB, L=Cambridge, O=Default Company Ltd\nissued on \: 2015-05-12 10\:36\:55\nexpires on \: 2018-05-11 10\:36\:55\nsigned using \: RSA with SHA1\nRSA key size \: 1024 bits\nbasic constraints \: CA=false\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment, Decipher Only\n"
120
Hanno Becker2389d162019-02-14 12:52:47 +0000121X509 CRT information, Subject Alt Name
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100122depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Ron Eldor9eeb8612019-02-12 15:03:42 +0200123x509_cert_info:"data_files/cert_example_multi.crt":"cert. version \: 3\nserial number \: 11\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=www.example.com\nissued on \: 2019-07-10 11\:27\:52\nexpires on \: 2029-07-10 11\:27\:52\nsigned using \: RSA with SHA-256\nRSA key size \: 1024 bits\nsubject alt name \:\n dNSName \: example.com\n dNSName \: example.net\n dNSName \: *.example.org\n"
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200124
Hanno Becker2389d162019-02-14 12:52:47 +0000125X509 CRT information, Multiple different Subject Alt Name
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100126depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Victor Barpp Gomes47c7a732022-09-29 11:34:23 -0300127x509_cert_info:"data_files/multiple_san.crt":"cert. version \: 3\nserial number \: 04\nissuer name \: C=UK, O=Mbed TLS, CN=Mbed TLS multiple othername SAN\nsubject name \: C=UK, O=Mbed TLS, CN=Mbed TLS multiple othername SAN\nissued on \: 2019-04-22 16\:10\:48\nexpires on \: 2029-04-19 16\:10\:48\nsigned using \: ECDSA with SHA256\nEC key size \: 256 bits\nsubject alt name \:\n dNSName \: example.com\n otherName \:\n hardware module name \:\n hardware type \: 1.3.6.1.4.1.17.3\n hardware serial number \: 313233343536\n dNSName \: example.net\n dNSName \: *.example.org\n"
Manuel Pégourié-Gonnardbce2b302014-04-01 13:43:28 +0200128
Hanno Becker2389d162019-02-14 12:52:47 +0000129X509 CRT information, Subject Alt Name + Key Usage
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100130depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Janos Follath22f605f2019-05-10 10:37:17 +0100131x509_cert_info:"data_files/cert_example_multi_nocn.crt":"cert. version \: 3\nserial number \: F7\:C6\:7F\:F8\:E9\:A9\:63\:F9\nissuer name \: C=NL\nsubject name \: C=NL\nissued on \: 2014-01-22 10\:04\:33\nexpires on \: 2024-01-22 10\:04\:33\nsigned using \: RSA with SHA1\nRSA key size \: 1024 bits\nbasic constraints \: CA=false\nsubject alt name \:\n dNSName \: www.shotokan-braunschweig.de\n dNSName \: www.massimo-abate.eu\n <unsupported>\n <unsupported>\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard65c2ddc2014-04-01 14:12:11 +0200132
Andrzej Kurek7a05fab2023-02-13 10:03:07 -0500133X509 CRT information, Subject Alt Name with uniformResourceIdentifier
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100134depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Andrzej Kurek570a0f82023-02-14 05:52:49 -0500135x509_cert_info:"data_files/rsa_single_san_uri.crt.der":"cert. version \: 3\nserial number \: 6F\:75\:EB\:E9\:6D\:25\:BC\:88\:82\:62\:A3\:E0\:68\:A7\:37\:3B\:EC\:75\:8F\:9C\nissuer name \: C=UK, O=Mbed TLS, CN=Mbed TLS URI SAN\nsubject name \: C=UK, O=Mbed TLS, CN=Mbed TLS URI SAN\nissued on \: 2023-02-14 10\:38\:05\nexpires on \: 2043-02-09 10\:38\:05\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\nsubject alt name \:\n uniformResourceIdentifier \: urn\:example.com\:5ff40f78-9210-494f-8206-c2c082f0609c\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Andrzej Kurek7a05fab2023-02-13 10:03:07 -0500136
137X509 CRT information, Subject Alt Name with two uniformResourceIdentifiers
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100138depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Andrzej Kurek570a0f82023-02-14 05:52:49 -0500139x509_cert_info:"data_files/rsa_multiple_san_uri.crt.der":"cert. version \: 3\nserial number \: 08\:E2\:93\:18\:91\:26\:D8\:46\:88\:90\:10\:4F\:B5\:86\:CB\:C4\:78\:E6\:EA\:0D\nissuer name \: C=UK, O=Mbed TLS, CN=Mbed TLS URI SAN\nsubject name \: C=UK, O=Mbed TLS, CN=Mbed TLS URI SAN\nissued on \: 2023-02-14 10\:37\:50\nexpires on \: 2043-02-09 10\:37\:50\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\nsubject alt name \:\n uniformResourceIdentifier \: urn\:example.com\:5ff40f78-9210-494f-8206-c2c082f0609c\n uniformResourceIdentifier \: urn\:example.com\:5ff40f78-9210-494f-8206-abcde1234567\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Andrzej Kurek7a05fab2023-02-13 10:03:07 -0500140
Hanno Becker2389d162019-02-14 12:52:47 +0000141X509 CRT information, RSA Certificate Policy any
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100142depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Ron Eldor74d9acc2019-03-21 14:00:03 +0200143x509_cert_info:"data_files/test-ca-any_policy.crt":"cert. version \: 3\nserial number \: 00\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nissued on \: 2019-03-21 16\:40\:59\nexpires on \: 2029-03-21 16\:40\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\ncertificate policies \: Any Policy\n"
144
Hanno Becker2389d162019-02-14 12:52:47 +0000145X509 CRT information, ECDSA Certificate Policy any
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100146depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Ron Eldor74d9acc2019-03-21 14:00:03 +0200147x509_cert_info:"data_files/test-ca-any_policy_ec.crt":"cert. version \: 3\nserial number \: 00\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nissued on \: 2019-03-25 09\:02\:45\nexpires on \: 2029-03-25 09\:02\:45\nsigned using \: ECDSA with SHA256\nEC key size \: 384 bits\nbasic constraints \: CA=true\ncertificate policies \: Any Policy\n"
148
Hanno Becker2389d162019-02-14 12:52:47 +0000149X509 CRT information, RSA Certificate Policy any with qualifier
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100150depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Ron Eldor74d9acc2019-03-21 14:00:03 +0200151x509_cert_info:"data_files/test-ca-any_policy_with_qualifier.crt":"cert. version \: 3\nserial number \: 00\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nissued on \: 2019-04-28 13\:14\:31\nexpires on \: 2029-04-28 13\:14\:31\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\ncertificate policies \: Any Policy\n"
152
Hanno Becker2389d162019-02-14 12:52:47 +0000153X509 CRT information, ECDSA Certificate Policy any with qualifier
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100154depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Ron Eldor74d9acc2019-03-21 14:00:03 +0200155x509_cert_info:"data_files/test-ca-any_policy_with_qualifier_ec.crt":"cert. version \: 3\nserial number \: 00\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nissued on \: 2019-04-28 10\:16\:05\nexpires on \: 2029-04-28 10\:16\:05\nsigned using \: ECDSA with SHA256\nEC key size \: 384 bits\nbasic constraints \: CA=true\ncertificate policies \: Any Policy\n"
156
Hanno Becker2389d162019-02-14 12:52:47 +0000157X509 CRT information, RSA Certificate multiple Policies
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100158depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Ron Eldor74d9acc2019-03-21 14:00:03 +0200159x509_cert_info:"data_files/test-ca-multi_policy.crt":"cert. version \: 3\nserial number \: 00\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nissued on \: 2019-04-28 12\:59\:19\nexpires on \: 2029-04-28 12\:59\:19\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\ncertificate policies \: ???, Any Policy\n"
160
Hanno Becker2389d162019-02-14 12:52:47 +0000161X509 CRT information, ECDSA Certificate multiple Policies
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100162depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Ron Eldor74d9acc2019-03-21 14:00:03 +0200163x509_cert_info:"data_files/test-ca-multi_policy_ec.crt":"cert. version \: 3\nserial number \: 00\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nissued on \: 2019-04-28 12\:59\:51\nexpires on \: 2029-04-28 12\:59\:51\nsigned using \: ECDSA with SHA256\nEC key size \: 384 bits\nbasic constraints \: CA=true\ncertificate policies \: ???, Any Policy\n"
164
Hanno Becker2389d162019-02-14 12:52:47 +0000165X509 CRT information, RSA Certificate unsupported policy
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100166depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Ron Eldor74d9acc2019-03-21 14:00:03 +0200167x509_cert_info:"data_files/test-ca-unsupported_policy.crt":"cert. version \: 3\nserial number \: 00\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nissued on \: 2019-04-28 13\:00\:13\nexpires on \: 2029-04-28 13\:00\:13\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\ncertificate policies \: ???\n"
168
Hanno Becker2389d162019-02-14 12:52:47 +0000169X509 CRT information, ECDSA Certificate unsupported policy
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100170depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Ron Eldor74d9acc2019-03-21 14:00:03 +0200171x509_cert_info:"data_files/test-ca-unsupported_policy_ec.crt":"cert. version \: 3\nserial number \: 00\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nissued on \: 2019-04-28 13\:00\:19\nexpires on \: 2029-04-28 13\:00\:19\nsigned using \: ECDSA with SHA256\nEC key size \: 384 bits\nbasic constraints \: CA=true\ncertificate policies \: ???\n"
172
Hanno Becker2389d162019-02-14 12:52:47 +0000173X509 CRT information, Key Usage + Extended Key Usage
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100174depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnard7b30cfc2014-04-01 18:00:07 +0200175x509_cert_info:"data_files/server1.ext_ku.crt":"cert. version \: 3\nserial number \: 21\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nissued on \: 2014-04-01 14\:44\:43\nexpires on \: 2024-03-29 14\:44\:43\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\next key usage \: TLS Web Server Authentication\n"
Manuel Pégourié-Gonnardf6f4ab42014-04-01 17:32:44 +0200176
Hanno Becker2389d162019-02-14 12:52:47 +0000177X509 CRT information RSA signed by EC
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100178depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_SOME
Manuel Pégourié-Gonnardb28487d2014-04-01 12:19:09 +0200179x509_cert_info:"data_files/server4.crt":"cert. version \: 3\nserial number \: 08\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2013-09-24 15\:52\:04\nexpires on \: 2023-09-22 15\:52\:04\nsigned using \: ECDSA with SHA256\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnard6d29ff22013-08-10 09:44:43 +0200180
Hanno Becker2389d162019-02-14 12:52:47 +0000181X509 CRT information EC signed by RSA
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100182depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP192R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C
Manuel Pégourié-Gonnardb28487d2014-04-01 12:19:09 +0200183x509_cert_info:"data_files/server3.crt":"cert. version \: 3\nserial number \: 0D\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nissued on \: 2013-08-09 09\:17\:03\nexpires on \: 2023-08-07 09\:17\:03\nsigned using \: RSA with SHA1\nEC key size \: 192 bits\nbasic constraints \: CA=false\n"
Manuel Pégourié-Gonnard6d29ff22013-08-10 09:44:43 +0200184
Hanno Becker2389d162019-02-14 12:52:47 +0000185X509 CRT information Bitstring in subject name
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100186depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Przemek Stekiel5b9e4162023-02-15 12:56:37 +0100187x509_cert_info:"data_files/bitstring-in-dn.pem":"cert. version \: 3\nserial number \: 02\nissuer name \: CN=Test CA 01, ST=Ecnivorp, C=XX, emailAddress=tca@example.com, O=Test CA Authority\nsubject name \: C=XX, O=tca, ST=Ecnivorp, OU=TCA, CN=Client, emailAddress=client@example.com, serialNumber=7101012255, uniqueIdentifier=?7101012255\nissued on \: 2015-03-11 12\:06\:51\nexpires on \: 2025-03-08 12\:06\:51\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\nbasic constraints \: CA=false\nsubject alt name \:\n rfc822Name \: client@example.com\next key usage \: TLS Web Client Authentication\n"
Manuel Pégourié-Gonnard39ead3e2015-03-27 13:09:21 +0100188
Koh M. Nakagawa46b87822020-05-16 10:08:09 +0900189X509 CRT information Non-ASCII string in issuer name and subject name
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100190depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Koh M. Nakagawa46b87822020-05-16 10:08:09 +0900191x509_cert_info:"data_files/non-ascii-string-in-issuer.crt":"cert. version \: 3\nserial number \: 05\:E6\:53\:E7\:1B\:74\:F0\:B5\:D3\:84\:6D\:0C\:6D\:DC\:FA\:3F\:A4\:5A\:2B\:E0\nissuer name \: C=JP, ST=Tokyo, O=?????????????????? Ltd, CN=?????????????????? CA\nsubject name \: C=JP, ST=Tokyo, O=?????????????????? Ltd, CN=?????????????????? CA\nissued on \: 2020-05-20 16\:17\:23\nexpires on \: 2020-06-19 16\:17\:23\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\n"
192
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200193X509 SAN parsing otherName
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100194depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Andrzej Kurekd90376e2023-01-20 07:08:57 -0500195x509_parse_san:"data_files/server5-othername.crt":"type \: 0\notherName \: hardware module name \: hardware type \: 1.3.6.1.4.1.17.3, hardware serial number \: 313233343536\n":0
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200196
Victor Barpp Gomesd0225af2022-09-29 11:40:20 -0300197X509 SAN parsing binary otherName
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100198depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Andrzej Kurekd90376e2023-01-20 07:08:57 -0500199x509_parse_san:"data_files/server5-nonprintable_othername.crt":"type \: 0\notherName \: hardware module name \: hardware type \: 1.3.6.1.4.1.17.3, hardware serial number \: 3132338081008180333231\n":0
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200200
Andrzej Kureke12b01d2023-01-10 06:47:38 -0500201X509 SAN parsing directoryName
Andrzej Kurekd90376e2023-01-20 07:08:57 -0500202depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
203x509_parse_san:"data_files/server5-directoryname.crt.der":"type \: 4\ndirectoryName \: C=UK, O=Mbed TLS, CN=Mbed TLS directoryName SAN\n":0
204
205X509 SAN parsing directoryName, seq malformed
206depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
207x509_parse_san:"data_files/server5-directoryname-seq-malformed.crt.der":"":MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Andrzej Kureke12b01d2023-01-10 06:47:38 -0500208
Andrzej Kurek532b8d42023-02-13 08:10:28 -0500209X509 SAN parsing two directoryNames, second DN OID malformed
210depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
211x509_parse_san:"data_files/server5-second-directoryname-oid-malformed.crt.der":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
212
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200213X509 SAN parsing dNSName
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100214depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Andrzej Kurekd90376e2023-01-20 07:08:57 -0500215x509_parse_san:"data_files/cert_example_multi.crt":"type \: 2\ndNSName \: example.com\ntype \: 2\ndNSName \: example.net\ntype \: 2\ndNSName \: *.example.org\n":0
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200216
217X509 SAN parsing Multiple different types
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100218depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Andrzej Kurekd90376e2023-01-20 07:08:57 -0500219x509_parse_san:"data_files/multiple_san.crt":"type \: 2\ndNSName \: example.com\ntype \: 0\notherName \: hardware module name \: hardware type \: 1.3.6.1.4.1.17.3, hardware serial number \: 313233343536\ntype \: 2\ndNSName \: example.net\ntype \: 2\ndNSName \: *.example.org\n":0
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200220
221X509 SAN parsing, no subject alt name
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100222depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_SOME
Andrzej Kurekd90376e2023-01-20 07:08:57 -0500223x509_parse_san:"data_files/server4.crt":"":0
Ron Eldorb2dc3fa2019-03-21 13:40:13 +0200224
225X509 SAN parsing, unsupported otherName name
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100226depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Andrzej Kurekd90376e2023-01-20 07:08:57 -0500227x509_parse_san:"data_files/server5-unsupported_othername.crt":"":0
Paul Bakkerc27c4e22013-09-23 15:01:36 +0200228
Przemek Stekiel608e3ef2023-02-09 14:47:50 +0100229X509 SAN parsing rfc822Name
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100230depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Andrzej Kurek43d71312023-02-27 17:24:36 -0500231x509_parse_san:"data_files/test_cert_rfc822name.crt.der":"type \: 1\nrfc822Name \: my@other.address\ntype \: 1\nrfc822Name \: second@other.address\n":0
Przemek Stekiel608e3ef2023-02-09 14:47:50 +0100232
Paul Bakker37940d9f2009-07-10 22:38:58 +0000233X509 CRL information #1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100234depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200235mbedtls_x509_crl_info:"data_files/crl_expired.pem":"CRL version \: 1\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2011-02-20 10\:24\:19\nnext update \: 2011-02-20 11\:24\:19\nRevoked certificates\:\nserial number\: 01 revocation date\: 2011-02-12 14\:44\:07\nserial number\: 03 revocation date\: 2011-02-12 14\:44\:07\nsigned using \: RSA with SHA1\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +0000236
Paul Bakkerc26a1892009-07-19 20:30:14 +0000237X509 CRL Information MD5 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100238depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_MD5:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200239mbedtls_x509_crl_info:"data_files/crl_md5.pem":"CRL version \: 1\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2011-02-12 14\:44\:07\nnext update \: 2011-04-13 14\:44\:07\nRevoked certificates\:\nserial number\: 01 revocation date\: 2011-02-12 14\:44\:07\nserial number\: 03 revocation date\: 2011-02-12 14\:44\:07\nsigned using \: RSA with MD5\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +0000240
241X509 CRL Information SHA1 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100242depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200243mbedtls_x509_crl_info:"data_files/crl_sha1.pem":"CRL version \: 1\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2011-02-12 14\:44\:07\nnext update \: 2011-04-13 14\:44\:07\nRevoked certificates\:\nserial number\: 01 revocation date\: 2011-02-12 14\:44\:07\nserial number\: 03 revocation date\: 2011-02-12 14\:44\:07\nsigned using \: RSA with SHA1\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +0000244
245X509 CRL Information SHA224 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100246depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA224:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200247mbedtls_x509_crl_info:"data_files/crl_sha224.pem":"CRL version \: 1\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2011-02-12 14\:44\:07\nnext update \: 2011-04-13 14\:44\:07\nRevoked certificates\:\nserial number\: 01 revocation date\: 2011-02-12 14\:44\:07\nserial number\: 03 revocation date\: 2011-02-12 14\:44\:07\nsigned using \: RSA with SHA-224\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +0000248
249X509 CRL Information SHA256 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100250depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200251mbedtls_x509_crl_info:"data_files/crl_sha256.pem":"CRL version \: 1\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2011-02-12 14\:44\:07\nnext update \: 2011-04-13 14\:44\:07\nRevoked certificates\:\nserial number\: 01 revocation date\: 2011-02-12 14\:44\:07\nserial number\: 03 revocation date\: 2011-02-12 14\:44\:07\nsigned using \: RSA with SHA-256\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +0000252
253X509 CRL Information SHA384 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100254depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA384:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200255mbedtls_x509_crl_info:"data_files/crl_sha384.pem":"CRL version \: 1\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2011-02-12 14\:44\:07\nnext update \: 2011-04-13 14\:44\:07\nRevoked certificates\:\nserial number\: 01 revocation date\: 2011-02-12 14\:44\:07\nserial number\: 03 revocation date\: 2011-02-12 14\:44\:07\nsigned using \: RSA with SHA-384\n"
Paul Bakkerc26a1892009-07-19 20:30:14 +0000256
257X509 CRL Information SHA512 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100258depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA512:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200259mbedtls_x509_crl_info:"data_files/crl_sha512.pem":"CRL version \: 1\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2011-02-12 14\:44\:07\nnext update \: 2011-04-13 14\:44\:07\nRevoked certificates\:\nserial number\: 01 revocation date\: 2011-02-12 14\:44\:07\nserial number\: 03 revocation date\: 2011-02-12 14\:44\:07\nsigned using \: RSA with SHA-512\n"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000260
Manuel Pégourié-Gonnard8e42ff62014-01-24 15:56:20 +0100261X509 CRL information RSA-PSS, SHA1 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100262depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200263mbedtls_x509_crl_info:"data_files/crl-rsa-pss-sha1.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2014-01-20 13\:46\:35\nnext update \: 2024-01-18 13\:46\:35\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nserial number\: 16 revocation date\: 2014-01-20 13\:43\:05\nsigned using \: RSASSA-PSS (SHA1, MGF1-SHA1, 0xEA)\n"
Manuel Pégourié-Gonnard8e42ff62014-01-24 15:56:20 +0100264
265X509 CRL information RSA-PSS, SHA224 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100266depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA224:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200267mbedtls_x509_crl_info:"data_files/crl-rsa-pss-sha224.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2014-01-20 13\:56\:06\nnext update \: 2024-01-18 13\:56\:06\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nserial number\: 16 revocation date\: 2014-01-20 13\:43\:05\nsigned using \: RSASSA-PSS (SHA224, MGF1-SHA224, 0xE2)\n"
Manuel Pégourié-Gonnard8e42ff62014-01-24 15:56:20 +0100268
269X509 CRL information RSA-PSS, SHA256 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100270depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA256:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200271mbedtls_x509_crl_info:"data_files/crl-rsa-pss-sha256.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2014-01-20 13\:56\:16\nnext update \: 2024-01-18 13\:56\:16\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nserial number\: 16 revocation date\: 2014-01-20 13\:43\:05\nsigned using \: RSASSA-PSS (SHA256, MGF1-SHA256, 0xDE)\n"
Manuel Pégourié-Gonnard8e42ff62014-01-24 15:56:20 +0100272
273X509 CRL information RSA-PSS, SHA384 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100274depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA384:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200275mbedtls_x509_crl_info:"data_files/crl-rsa-pss-sha384.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2014-01-20 13\:56\:28\nnext update \: 2024-01-18 13\:56\:28\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nserial number\: 16 revocation date\: 2014-01-20 13\:43\:05\nsigned using \: RSASSA-PSS (SHA384, MGF1-SHA384, 0xCE)\n"
Manuel Pégourié-Gonnard8e42ff62014-01-24 15:56:20 +0100276
277X509 CRL information RSA-PSS, SHA512 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100278depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA512:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200279mbedtls_x509_crl_info:"data_files/crl-rsa-pss-sha512.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2014-01-20 13\:56\:38\nnext update \: 2024-01-18 13\:56\:38\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nserial number\: 16 revocation date\: 2014-01-20 13\:43\:05\nsigned using \: RSASSA-PSS (SHA512, MGF1-SHA512, 0xBE)\n"
Manuel Pégourié-Gonnard8e42ff62014-01-24 15:56:20 +0100280
Manuel Pégourié-Gonnard05b9dce2013-08-10 10:19:03 +0200281X509 CRL Information EC, SHA1 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100282depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_PK_CAN_ECDSA_SOME:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200283mbedtls_x509_crl_info:"data_files/crl-ec-sha1.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nthis update \: 2013-09-24 16\:31\:08\nnext update \: 2023-09-22 16\:31\:08\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nsigned using \: ECDSA with SHA1\n"
Manuel Pégourié-Gonnard05b9dce2013-08-10 10:19:03 +0200284
285X509 CRL Information EC, SHA224 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100286depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA224:MBEDTLS_PK_CAN_ECDSA_SOME:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200287mbedtls_x509_crl_info:"data_files/crl-ec-sha224.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nthis update \: 2013-09-24 16\:31\:08\nnext update \: 2023-09-22 16\:31\:08\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nsigned using \: ECDSA with SHA224\n"
Manuel Pégourié-Gonnard05b9dce2013-08-10 10:19:03 +0200288
289X509 CRL Information EC, SHA256 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100290depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_SOME:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200291mbedtls_x509_crl_info:"data_files/crl-ec-sha256.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nthis update \: 2013-09-24 16\:31\:08\nnext update \: 2023-09-22 16\:31\:08\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nsigned using \: ECDSA with SHA256\n"
Manuel Pégourié-Gonnard05b9dce2013-08-10 10:19:03 +0200292
293X509 CRL Information EC, SHA384 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100294depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA384:MBEDTLS_PK_CAN_ECDSA_SOME:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200295mbedtls_x509_crl_info:"data_files/crl-ec-sha384.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nthis update \: 2013-09-24 16\:31\:08\nnext update \: 2023-09-22 16\:31\:08\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nsigned using \: ECDSA with SHA384\n"
Manuel Pégourié-Gonnard05b9dce2013-08-10 10:19:03 +0200296
297X509 CRL Information EC, SHA512 Digest
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100298depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA512:MBEDTLS_PK_CAN_ECDSA_SOME:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200299mbedtls_x509_crl_info:"data_files/crl-ec-sha512.pem":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=Polarssl Test EC CA\nthis update \: 2013-09-24 16\:31\:08\nnext update \: 2023-09-22 16\:31\:08\nRevoked certificates\:\nserial number\: 0A revocation date\: 2013-09-24 16\:28\:38\nsigned using \: ECDSA with SHA512\n"
Manuel Pégourié-Gonnard05b9dce2013-08-10 10:19:03 +0200300
Andres AGa39db392016-12-08 17:10:38 +0000301X509 CRL Malformed Input (trailing spaces at end of file)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100302depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA512:MBEDTLS_PK_CAN_ECDSA_VERIFY
Andres AGa39db392016-12-08 17:10:38 +0000303mbedtls_x509_crl_parse:"data_files/crl-malformed-trailing-spaces.pem":MBEDTLS_ERR_PEM_NO_HEADER_FOOTER_PRESENT
304
Manuel Pégourié-Gonnardfd3e4fb2018-03-13 11:53:30 +0100305X509 CRL Unsupported critical extension (issuingDistributionPoint)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100306depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardfd3e4fb2018-03-13 11:53:30 +0100307mbedtls_x509_crl_parse:"data_files/crl-idp.pem":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
308
Manuel Pégourié-Gonnarda63305d2018-03-14 12:23:56 +0100309X509 CRL Unsupported non-critical extension (issuingDistributionPoint)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100310depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnarda63305d2018-03-14 12:23:56 +0100311mbedtls_x509_crl_parse:"data_files/crl-idpnc.pem":0
312
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100313X509 CSR Information RSA with MD5
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100314depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_MD5:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200315mbedtls_x509_csr_info:"data_files/server1.req.md5":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nsigned using \: RSA with MD5\nRSA key size \: 2048 bits\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100316
317X509 CSR Information RSA with SHA1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100318depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200319mbedtls_x509_csr_info:"data_files/server1.req.sha1":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nsigned using \: RSA with SHA1\nRSA key size \: 2048 bits\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100320
321X509 CSR Information RSA with SHA224
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100322depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA224:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200323mbedtls_x509_csr_info:"data_files/server1.req.sha224":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nsigned using \: RSA with SHA-224\nRSA key size \: 2048 bits\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100324
Hanno Becker01346c62019-02-12 13:32:06 +0000325X509 CSR Information RSA with SHA-256
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100326depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTS_X509_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200327mbedtls_x509_csr_info:"data_files/server1.req.sha256":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100328
329X509 CSR Information RSA with SHA384
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100330depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA384:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200331mbedtls_x509_csr_info:"data_files/server1.req.sha384":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nsigned using \: RSA with SHA-384\nRSA key size \: 2048 bits\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100332
333X509 CSR Information RSA with SHA512
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100334depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA512:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200335mbedtls_x509_csr_info:"data_files/server1.req.sha512":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nsigned using \: RSA with SHA-512\nRSA key size \: 2048 bits\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100336
Werner Lewisb33dacd2022-05-20 12:48:46 +0100337X509 CSR Information RSA with SHA-256, containing commas
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100338depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTS_X509_INFO
Werner Lewisb33dacd2022-05-20 12:48:46 +0100339mbedtls_x509_csr_info:"data_files/server1.req.commas.sha256":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL\, Commas, CN=PolarSSL Server 1\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\n"
340
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100341X509 CSR Information EC with SHA1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100342depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_PEM_PARSE_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100343mbedtls_x509_csr_info:"data_files/server5.req.sha1":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: ECDSA with SHA1\nEC key size \: 256 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100344
345X509 CSR Information EC with SHA224
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100346depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_PEM_PARSE_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA224:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100347mbedtls_x509_csr_info:"data_files/server5.req.sha224":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: ECDSA with SHA224\nEC key size \: 256 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100348
349X509 CSR Information EC with SHA256
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100350depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_PEM_PARSE_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100351mbedtls_x509_csr_info:"data_files/server5.req.sha256":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: ECDSA with SHA256\nEC key size \: 256 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100352
353X509 CSR Information EC with SHA384
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100354depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_PEM_PARSE_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA384:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100355mbedtls_x509_csr_info:"data_files/server5.req.sha384":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: ECDSA with SHA384\nEC key size \: 256 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100356
357X509 CSR Information EC with SHA512
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100358depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_PEM_PARSE_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA512:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100359mbedtls_x509_csr_info:"data_files/server5.req.sha512":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: ECDSA with SHA512\nEC key size \: 256 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard2a8d7fd2014-01-24 17:34:26 +0100360
Manuel Pégourié-Gonnard39868ee2014-01-24 18:47:17 +0100361X509 CSR Information RSA-PSS with SHA1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100362depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100363mbedtls_x509_csr_info:"data_files/server9.req.sha1":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: RSASSA-PSS (SHA1, MGF1-SHA1, 0x6A)\nRSA key size \: 1024 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard39868ee2014-01-24 18:47:17 +0100364
365X509 CSR Information RSA-PSS with SHA224
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100366depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA224:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100367mbedtls_x509_csr_info:"data_files/server9.req.sha224":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: RSASSA-PSS (SHA224, MGF1-SHA224, 0x62)\nRSA key size \: 1024 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard39868ee2014-01-24 18:47:17 +0100368
369X509 CSR Information RSA-PSS with SHA256
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100370depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA256:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100371mbedtls_x509_csr_info:"data_files/server9.req.sha256":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: RSASSA-PSS (SHA256, MGF1-SHA256, 0x5E)\nRSA key size \: 1024 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard39868ee2014-01-24 18:47:17 +0100372
373X509 CSR Information RSA-PSS with SHA384
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100374depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA384:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100375mbedtls_x509_csr_info:"data_files/server9.req.sha384":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: RSASSA-PSS (SHA384, MGF1-SHA384, 0x4E)\nRSA key size \: 1024 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard39868ee2014-01-24 18:47:17 +0100376
377X509 CSR Information RSA-PSS with SHA512
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100378depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA512:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +0100379mbedtls_x509_csr_info:"data_files/server9.req.sha512":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: RSASSA-PSS (SHA512, MGF1-SHA512, 0x3E)\nRSA key size \: 1024 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n"
Manuel Pégourié-Gonnard39868ee2014-01-24 18:47:17 +0100380
Hanno Becker01346c62019-02-12 13:32:06 +0000381X509 CSR Information RSA with SHA-256 - Microsoft header
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100382depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Simon Butcher03de2102018-10-06 16:24:13 +0100383mbedtls_x509_csr_info:"data_files/server1-ms.req.sha256":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=PolarSSL Server 1\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\n"
384
Przemek Stekiel46a4a492023-01-12 15:40:59 +0100385X509 CSR Information v3 extensions #1 (all)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100386depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel92cce3f2023-01-25 10:33:26 +0100387mbedtls_x509_csr_info:"data_files/test_csr_v3_all.csr.der":"CSR version \: 1\nsubject name \: CN=etcd\nsigned using \: RSA with SHA-256\nRSA key size \: 1024 bits\n\nsubject alt name \:\n otherName \:\n hardware module name \:\n hardware type \: 1.3.6.1.4.1.17.3\n hardware serial number \: 3132338081008180333231\ncert. type \: SSL Client\nkey usage \: CRL Sign\n"
Przemek Stekiel46a4a492023-01-12 15:40:59 +0100388
389X509 CSR Information v3 extensions #2 (nsCertType only)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100390depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel92cce3f2023-01-25 10:33:26 +0100391mbedtls_x509_csr_info:"data_files/test_csr_v3_nsCertType.csr.der":"CSR version \: 1\nsubject name \: CN=etcd\nsigned using \: RSA with SHA-256\nRSA key size \: 1024 bits\n\ncert. type \: SSL Server\n"
Przemek Stekiel46a4a492023-01-12 15:40:59 +0100392
393X509 CSR Information v3 extensions #3 (subjectAltName only)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100394depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel92cce3f2023-01-25 10:33:26 +0100395mbedtls_x509_csr_info:"data_files/test_csr_v3_subjectAltName.csr.der":"CSR version \: 1\nsubject name \: CN=etcd\nsigned using \: RSA with SHA-256\nRSA key size \: 1024 bits\n\nsubject alt name \:\n dNSName \: example.com\n dNSName \: example.net\n dNSName \: *.example.org\n"
Przemek Stekiel46a4a492023-01-12 15:40:59 +0100396
397X509 CSR Information v3 extensions #4 (keyUsage only)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100398depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel92cce3f2023-01-25 10:33:26 +0100399mbedtls_x509_csr_info:"data_files/test_csr_v3_keyUsage.csr.der":"CSR version \: 1\nsubject name \: CN=etcd\nsigned using \: RSA with SHA-256\nRSA key size \: 1024 bits\n\nkey usage \: Digital Signature, Key Encipherment\n"
Przemek Stekiel46a4a492023-01-12 15:40:59 +0100400
Manuel Pégourié-Gonnardb5f48ad2015-04-20 10:38:13 +0100401X509 Verify Information: empty
402x509_verify_info:0:"":""
403
404X509 Verify Information: one issue
Manuel Pégourié-Gonnarde6028c92015-04-20 12:19:02 +0100405x509_verify_info:MBEDTLS_X509_BADCERT_MISSING:"":"Certificate was missing\n"
Manuel Pégourié-Gonnardb5f48ad2015-04-20 10:38:13 +0100406
407X509 Verify Information: two issues
Manuel Pégourié-Gonnarde6028c92015-04-20 12:19:02 +0100408x509_verify_info:MBEDTLS_X509_BADCERT_EXPIRED | MBEDTLS_X509_BADCRL_EXPIRED:"":"The certificate validity has expired\nThe CRL is expired\n"
Manuel Pégourié-Gonnardb5f48ad2015-04-20 10:38:13 +0100409
410X509 Verify Information: two issues, one unknown
Manuel Pégourié-Gonnard95051642015-06-15 10:39:46 +0200411x509_verify_info:MBEDTLS_X509_BADCERT_OTHER | 0x80000000:"":"Other reason (can be used by verify callback)\nUnknown reason (this should not happen)\n"
Manuel Pégourié-Gonnardb5f48ad2015-04-20 10:38:13 +0100412
413X509 Verify Information: empty, with prefix
414x509_verify_info:0:" ! ":""
415
416X509 Verify Information: one issue, with prefix
Manuel Pégourié-Gonnarde6028c92015-04-20 12:19:02 +0100417x509_verify_info:MBEDTLS_X509_BADCERT_MISSING:" ! ":" ! Certificate was missing\n"
Manuel Pégourié-Gonnardb5f48ad2015-04-20 10:38:13 +0100418
419X509 Verify Information: two issues, with prefix
Manuel Pégourié-Gonnarde6028c92015-04-20 12:19:02 +0100420x509_verify_info:MBEDTLS_X509_BADCERT_EXPIRED | MBEDTLS_X509_BADCRL_EXPIRED:" ! ":" ! The certificate validity has expired\n ! The CRL is expired\n"
Manuel Pégourié-Gonnardb5f48ad2015-04-20 10:38:13 +0100421
Paul Bakker37940d9f2009-07-10 22:38:58 +0000422X509 Get Distinguished Name #1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100423depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200424mbedtls_x509_dn_gets:"data_files/server1.crt":"subject":"C=NL, O=PolarSSL, CN=PolarSSL Server 1"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000425
426X509 Get Distinguished Name #2
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100427depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200428mbedtls_x509_dn_gets:"data_files/server1.crt":"issuer":"C=NL, O=PolarSSL, CN=PolarSSL Test CA"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000429
430X509 Get Distinguished Name #3
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100431depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200432mbedtls_x509_dn_gets:"data_files/server2.crt":"subject":"C=NL, O=PolarSSL, CN=localhost"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000433
434X509 Get Distinguished Name #4
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100435depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200436mbedtls_x509_dn_gets:"data_files/server2.crt":"issuer":"C=NL, O=PolarSSL, CN=PolarSSL Test CA"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000437
Werner Lewisb33dacd2022-05-20 12:48:46 +0100438X509 Get Distinguished Name #5
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100439depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Werner Lewisb33dacd2022-05-20 12:48:46 +0100440mbedtls_x509_dn_gets:"data_files/server1.commas.crt":"subject":"C=NL, O=PolarSSL\, Commas, CN=PolarSSL Server 1"
441
Werner Lewis31ecb962022-06-17 15:51:55 +0100442X509 Get Modified DN #1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100443depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Werner Lewis31ecb962022-06-17 15:51:55 +0100444mbedtls_x509_dn_gets_subject_replace:"data_files/server1.crt":"Modified":"C=NL, O=Modified, CN=PolarSSL Server 1":0
445
446X509 Get Modified DN #2 Name exactly 255 bytes
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100447depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Werner Lewis31ecb962022-06-17 15:51:55 +0100448mbedtls_x509_dn_gets_subject_replace:"data_files/server1.crt":"123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345":"C=NL, O=123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345, CN=PolarSSL Server 1":0
449
450X509 Get Modified DN #3 Name exceeds 255 bytes
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100451depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Werner Lewis31ecb962022-06-17 15:51:55 +0100452mbedtls_x509_dn_gets_subject_replace:"data_files/server1.crt":"1234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456":"":MBEDTLS_ERR_X509_BUFFER_TOO_SMALL
453
454X509 Get Modified DN #4 Name exactly 255 bytes, with comma requiring escaping
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100455depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Werner Lewis31ecb962022-06-17 15:51:55 +0100456mbedtls_x509_dn_gets_subject_replace:"data_files/server1.crt":"1234567890,1234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234":"":MBEDTLS_ERR_X509_BUFFER_TOO_SMALL
457
Werner Lewis9b0e9402022-06-27 12:01:22 +0100458X509 Get Modified DN #5 Name exactly 255 bytes, ending with comma requiring escaping
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100459depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Werner Lewis9b0e9402022-06-27 12:01:22 +0100460mbedtls_x509_dn_gets_subject_replace:"data_files/server1.crt":"12345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234,":"":MBEDTLS_ERR_X509_BUFFER_TOO_SMALL
461
Werner Lewisb3acb052022-06-17 15:59:58 +0100462X509 Get Next DN #1 No Multivalue RDNs
463mbedtls_x509_dn_get_next:"C=NL, O=PolarSSL, CN=PolarSSL Server 1":0:"C O CN":3:"C=NL, O=PolarSSL, CN=PolarSSL Server 1"
464
465X509 Get Next DN #2 Initial Multivalue RDN
Werner Lewis12657cd2022-06-20 11:47:57 +0100466mbedtls_x509_dn_get_next:"C=NL, O=PolarSSL, CN=PolarSSL Server 1":0x01:"C CN":2:"C=NL + O=PolarSSL, CN=PolarSSL Server 1"
Werner Lewisb3acb052022-06-17 15:59:58 +0100467
468X509 Get Next DN #3 Single Multivalue RDN
Werner Lewis12657cd2022-06-20 11:47:57 +0100469mbedtls_x509_dn_get_next:"C=NL, O=PolarSSL, CN=PolarSSL Server 1":0x03:"C":1:"C=NL + O=PolarSSL + CN=PolarSSL Server 1"
Werner Lewisb3acb052022-06-17 15:59:58 +0100470
Werner Lewis90c46c32022-06-20 11:46:58 +0100471X509 Get Next DN #4 Consecutive Multivalue RDNs
Werner Lewis12657cd2022-06-20 11:47:57 +0100472mbedtls_x509_dn_get_next:"C=NL, O=PolarSSL, title=Example, CN=PolarSSL Server 1":0x05:"C title":2:"C=NL + O=PolarSSL, title=Example + CN=PolarSSL Server 1"
Werner Lewisb3acb052022-06-17 15:59:58 +0100473
David Horstmannd0e3d452022-10-17 17:42:19 +0100474# Parse the following valid DN:
475#
476# 31 0B <- Set of
477# 30 09 <- Sequence of
478# 06 03 55 04 06 <- OID 2.5.4.6 countryName (C)
479# 13 02 4E 4C <- PrintableString "NL"
480# 31 11 <- Set of
481# 30 0F <- Sequence of
482# 06 03 55 04 0A <- OID 2.5.4.10 organizationName (O)
483# 0C 08 50 6F 6C 61 72 53 53 4C <- UTF8String "PolarSSL"
484# 31 19 <- Set of
485# 30 17 <- Sequence of
486# 06 03 55 04 03 <- OID 2.5.4.3 commonName (CN)
487# 0C 10 50 6F 6C 61 72 53 53 4C 20 54 65 73 74 20 43 41 <- UTF8String "PolarSSL Test CA"
488#
David Horstmanndb73d3b2022-10-04 16:49:16 +0100489X509 Get Name Valid DN
490mbedtls_x509_get_name:"310B3009060355040613024E4C3111300F060355040A0C08506F6C617253534C3119301706035504030C10506F6C617253534C2054657374204341":0
491
David Horstmannd0e3d452022-10-17 17:42:19 +0100492# Parse the following corrupted DN:
493#
494# 31 0B <- Set of
495# 30 09 <- Sequence of
496# 06 03 55 04 06 <- OID 2.5.4.6 countryName (C)
497# 13 02 4E 4C <- PrintableString "NL"
498# 31 11 <- Set of
499# 30 0F <- Sequence of
500# 06 03 55 04 0A <- OID 2.5.4.10 organizationName (O)
501# 0C 08 50 6F 6C 61 72 53 53 4C <- UTF8String "PolarSSL"
502# 30 19 <- Sequence of (corrupted)
503# 30 17 <- Sequence of
504# 06 03 55 04 03 <- OID 2.5.4.3 commonName (CN)
505# 0C 10 50 6F 6C 61 72 53 53 4C 20 54 65 73 74 20 43 41 <- UTF8String "PolarSSL Test CA"
506#
507# The third 'Set of' is corrupted to instead be a 'Sequence of', causing an
508# error and forcing mbedtls_x509_get_name() to clean up the names it has
509# already allocated.
510#
David Horstmanndb73d3b2022-10-04 16:49:16 +0100511X509 Get Name Corrupted DN Mem Leak
512mbedtls_x509_get_name:"310B3009060355040613024E4C3111300F060355040A0C08506F6C617253534C3019301706035504030C10506F6C617253534C2054657374204341":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
513
Paul Bakker37940d9f2009-07-10 22:38:58 +0000514X509 Time Expired #1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100515depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100516mbedtls_x509_time_is_past:"data_files/server1.crt":"valid_from":1
Paul Bakker37940d9f2009-07-10 22:38:58 +0000517
518X509 Time Expired #2
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100519depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100520mbedtls_x509_time_is_past:"data_files/server1.crt":"valid_to":0
Paul Bakker37940d9f2009-07-10 22:38:58 +0000521
522X509 Time Expired #3
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100523depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100524mbedtls_x509_time_is_past:"data_files/server2.crt":"valid_from":1
Paul Bakker37940d9f2009-07-10 22:38:58 +0000525
526X509 Time Expired #4
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100527depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100528mbedtls_x509_time_is_past:"data_files/server2.crt":"valid_to":0
Paul Bakker37940d9f2009-07-10 22:38:58 +0000529
530X509 Time Expired #5
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100531depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100532mbedtls_x509_time_is_past:"data_files/test-ca.crt":"valid_from":1
Paul Bakker37940d9f2009-07-10 22:38:58 +0000533
Manuel Pégourié-Gonnarde7f64a82013-08-09 10:59:25 +0200534X509 Time Expired #6
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100535depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100536mbedtls_x509_time_is_past:"data_files/test-ca.crt":"valid_to":0
Paul Bakker37940d9f2009-07-10 22:38:58 +0000537
Manuel Pégourié-Gonnard6304f782014-03-10 12:26:11 +0100538X509 Time Future #1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100539depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100540mbedtls_x509_time_is_future:"data_files/server5.crt":"valid_from":0
Manuel Pégourié-Gonnard6304f782014-03-10 12:26:11 +0100541
542X509 Time Future #2
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100543depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100544mbedtls_x509_time_is_future:"data_files/server5.crt":"valid_to":1
Manuel Pégourié-Gonnard6304f782014-03-10 12:26:11 +0100545
546X509 Time Future #3
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100547depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100548mbedtls_x509_time_is_future:"data_files/server5-future.crt":"valid_from":1
Manuel Pégourié-Gonnard6304f782014-03-10 12:26:11 +0100549
550X509 Time Future #4
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100551depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100552mbedtls_x509_time_is_future:"data_files/server5-future.crt":"valid_to":1
Manuel Pégourié-Gonnard6304f782014-03-10 12:26:11 +0100553
554X509 Time Future #5
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100555depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100556mbedtls_x509_time_is_future:"data_files/test-ca2.crt":"valid_from":0
Manuel Pégourié-Gonnard6304f782014-03-10 12:26:11 +0100557
558X509 Time Future #6
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100559depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_HAVE_TIME_DATE:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardc730ed32015-06-02 10:38:50 +0100560mbedtls_x509_time_is_future:"data_files/test-ca2.crt":"valid_to":1
Manuel Pégourié-Gonnard6304f782014-03-10 12:26:11 +0100561
Hanno Becker2389d162019-02-14 12:52:47 +0000562X509 CRT verification #1 (Revoked Cert, Expired CRL, no CN)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100563depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200564x509_verify:"data_files/server1.crt":"data_files/test-ca.crt":"data_files/crl_expired.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED | MBEDTLS_X509_BADCRL_EXPIRED:"compat":"NULL"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000565
Hanno Becker2389d162019-02-14 12:52:47 +0000566X509 CRT verification #1a (Revoked Cert, Future CRL, no CN)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100567depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200568x509_verify:"data_files/server6.crt":"data_files/test-ca2.crt":"data_files/crl-future.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED | MBEDTLS_X509_BADCRL_FUTURE:"compat":"NULL"
Manuel Pégourié-Gonnard95337652014-03-10 13:15:18 +0100569
Hanno Becker2389d162019-02-14 12:52:47 +0000570X509 CRT verification #2 (Revoked Cert, Expired CRL)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100571depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200572x509_verify:"data_files/server1.crt":"data_files/test-ca.crt":"data_files/crl_expired.pem":"PolarSSL Server 1":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED | MBEDTLS_X509_BADCRL_EXPIRED:"compat":"NULL"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000573
Hanno Becker2389d162019-02-14 12:52:47 +0000574X509 CRT verification #2a (Revoked Cert, Future CRL)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100575depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200576x509_verify:"data_files/server6.crt":"data_files/test-ca2.crt":"data_files/crl-future.pem":"localhost":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED | MBEDTLS_X509_BADCRL_FUTURE:"compat":"NULL"
Manuel Pégourié-Gonnard95337652014-03-10 13:15:18 +0100577
Hanno Becker2389d162019-02-14 12:52:47 +0000578X509 CRT verification #3 (Revoked Cert, Future CRL, CN Mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100579depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200580x509_verify:"data_files/server1.crt":"data_files/test-ca.crt":"data_files/crl_expired.pem":"PolarSSL Wrong CN":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED | MBEDTLS_X509_BADCRL_EXPIRED | MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000581
Hanno Becker2389d162019-02-14 12:52:47 +0000582X509 CRT verification #3a (Revoked Cert, Expired CRL, CN Mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100583depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200584x509_verify:"data_files/server6.crt":"data_files/test-ca2.crt":"data_files/crl-future.pem":"Wrong CN":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED | MBEDTLS_X509_BADCRL_FUTURE | MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Manuel Pégourié-Gonnard95337652014-03-10 13:15:18 +0100585
Hanno Becker2389d162019-02-14 12:52:47 +0000586X509 CRT verification #4 (Valid Cert, Expired CRL)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100587depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200588x509_verify:"data_files/server2.crt":"data_files/test-ca.crt":"data_files/crl_expired.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCRL_EXPIRED:"compat":"NULL"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000589
Hanno Becker2389d162019-02-14 12:52:47 +0000590X509 CRT verification #4a (Revoked Cert, Future CRL)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100591depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200592x509_verify:"data_files/server5.crt":"data_files/test-ca2.crt":"data_files/crl-future.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCRL_FUTURE:"compat":"NULL"
Manuel Pégourié-Gonnard95337652014-03-10 13:15:18 +0100593
Hanno Becker2389d162019-02-14 12:52:47 +0000594X509 CRT verification #5 (Revoked Cert)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100595depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200596x509_verify:"data_files/server1.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000597
Hanno Becker2389d162019-02-14 12:52:47 +0000598X509 CRT verification #5' (Revoked Cert, differing DN string formats #1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100599depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Hanno Becker52acdb52018-11-02 10:09:48 +0000600x509_verify:"data_files/server1.crt":"data_files/test-ca_utf8.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
601
Hanno Becker2389d162019-02-14 12:52:47 +0000602X509 CRT verification #5'' (Revoked Cert, differing DN string formats #2)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100603depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Hanno Becker52acdb52018-11-02 10:09:48 +0000604x509_verify:"data_files/server1.crt":"data_files/test-ca_printable.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
605
Hanno Becker2389d162019-02-14 12:52:47 +0000606X509 CRT verification #5''' (Revoked Cert, differing upper and lower case)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100607depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Hanno Becker52acdb52018-11-02 10:09:48 +0000608x509_verify:"data_files/server1.crt":"data_files/test-ca_uppercase.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
609
Hanno Becker2389d162019-02-14 12:52:47 +0000610X509 CRT verification #6 (Revoked Cert)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100611depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200612x509_verify:"data_files/server1.crt":"data_files/test-ca.crt":"data_files/crl.pem":"PolarSSL Server 1":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000613
Hanno Becker2389d162019-02-14 12:52:47 +0000614X509 CRT verification #7 (Revoked Cert, CN Mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100615depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200616x509_verify:"data_files/server1.crt":"data_files/test-ca.crt":"data_files/crl.pem":"PolarSSL Wrong CN":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED | MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000617
Hanno Becker2389d162019-02-14 12:52:47 +0000618X509 CRT verification #8 (Valid Cert)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100619depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200620x509_verify:"data_files/server5.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha1.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard95337652014-03-10 13:15:18 +0100621
Hanno Becker2389d162019-02-14 12:52:47 +0000622X509 CRT verification #8a (Expired Cert)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100623depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200624x509_verify:"data_files/server5-expired.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_EXPIRED:"compat":"NULL"
Manuel Pégourié-Gonnard95337652014-03-10 13:15:18 +0100625
Hanno Becker2389d162019-02-14 12:52:47 +0000626X509 CRT verification #8b (Future Cert)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100627depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200628x509_verify:"data_files/server5-future.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_FUTURE:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000629
Hanno Becker2389d162019-02-14 12:52:47 +0000630X509 CRT verification #8c (Expired Cert, longer chain)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100631depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Manuel Pégourié-Gonnard29d60fb2017-06-05 10:20:32 +0200632x509_verify:"data_files/server7-expired.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_EXPIRED:"compat":"NULL"
633
Hanno Becker2389d162019-02-14 12:52:47 +0000634X509 CRT verification #8d (Future Cert, longer chain)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100635depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Manuel Pégourié-Gonnard29d60fb2017-06-05 10:20:32 +0200636x509_verify:"data_files/server7-future.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_FUTURE:"compat":"NULL"
637
Hanno Becker2389d162019-02-14 12:52:47 +0000638X509 CRT verification #9 (Not trusted Cert)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100639depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200640x509_verify:"data_files/server2.crt":"data_files/server1.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000641
Hanno Becker2389d162019-02-14 12:52:47 +0000642X509 CRT verification #10 (Not trusted Cert, Expired CRL)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100643depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200644x509_verify:"data_files/server2.crt":"data_files/server1.crt":"data_files/crl_expired.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Paul Bakker37940d9f2009-07-10 22:38:58 +0000645
TRodziewicz75628d52021-06-18 12:56:27 +0200646X509 CRT verification #13 (Valid Cert MD5 Digest, MD5 forbidden)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100647depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200648x509_verify:"data_files/cert_md5.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_BAD_MD:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000649
TRodziewicz75628d52021-06-18 12:56:27 +0200650X509 CRT verification #13 (Valid Cert MD5 Digest, MD5 allowed)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100651depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Hanno Becker20a4ade2019-06-03 14:27:03 +0100652x509_verify:"data_files/cert_md5.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"all":"NULL"
653
TRodziewicz75628d52021-06-18 12:56:27 +0200654X509 CRT verification #14 (Valid Cert SHA1 Digest explicitly allowed in profile)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100655depends_on:MBEDTLS_MD_CAN_SHA1:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200656x509_verify:"data_files/cert_sha1.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000657
TRodziewicz75628d52021-06-18 12:56:27 +0200658X509 CRT verification #14 (Valid Cert SHA1 Digest forbidden in default profile)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100659depends_on:MBEDTLS_MD_CAN_SHA1:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Manuel Pégourié-Gonnarda54f6cc2017-08-09 10:41:42 +0200660x509_verify:"data_files/cert_sha1.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCRL_BAD_MD | MBEDTLS_X509_BADCERT_BAD_MD:"":"NULL"
Gilles Peskine2dc81a02017-05-05 19:00:39 +0200661
TRodziewicz75628d52021-06-18 12:56:27 +0200662X509 CRT verification #15 (Valid Cert SHA224 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100663depends_on:MBEDTLS_MD_CAN_SHA224:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200664x509_verify:"data_files/cert_sha224.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000665
TRodziewicz75628d52021-06-18 12:56:27 +0200666X509 CRT verification #16 (Valid Cert SHA256 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100667depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200668x509_verify:"data_files/cert_sha256.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000669
TRodziewicz75628d52021-06-18 12:56:27 +0200670X509 CRT verification #17 (Valid Cert SHA384 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100671depends_on:MBEDTLS_MD_CAN_SHA384:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200672x509_verify:"data_files/cert_sha384.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000673
TRodziewicz75628d52021-06-18 12:56:27 +0200674X509 CRT verification #18 (Valid Cert SHA512 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100675depends_on:MBEDTLS_MD_CAN_SHA512:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200676x509_verify:"data_files/cert_sha512.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Paul Bakkerb63b0af2011-01-13 17:54:59 +0000677
TRodziewicz75628d52021-06-18 12:56:27 +0200678X509 CRT verification #19 (Valid Cert, denying callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100679depends_on:MBEDTLS_MD_CAN_SHA512:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200680x509_verify:"data_files/cert_sha512.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_OTHER:"compat":"verify_none"
Paul Bakkerb63b0af2011-01-13 17:54:59 +0000681
TRodziewicz75628d52021-06-18 12:56:27 +0200682X509 CRT verification #19 (Not trusted Cert, allowing callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100683depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200684x509_verify:"data_files/server2.crt":"data_files/server1.crt":"data_files/crl_expired.pem":"NULL":0:0:"compat":"verify_all"
Paul Bakker4d6b31a2009-07-12 11:11:06 +0000685
TRodziewicz75628d52021-06-18 12:56:27 +0200686X509 CRT verification #21 (domain matching wildcard certificate, case insensitive)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100687depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200688x509_verify:"data_files/cert_example_wildcard.crt":"data_files/test-ca.crt":"data_files/crl.pem":"mail.ExAmPlE.com":0:0:"compat":"NULL"
Paul Bakkera8cd2392012-02-11 16:09:32 +0000689
TRodziewicz75628d52021-06-18 12:56:27 +0200690X509 CRT verification #22 (domain not matching wildcard certificate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100691depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200692x509_verify:"data_files/cert_example_wildcard.crt":"data_files/test-ca.crt":"data_files/crl.pem":"mail.example.net":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakkera8cd2392012-02-11 16:09:32 +0000693
TRodziewicz75628d52021-06-18 12:56:27 +0200694X509 CRT verification #23 (domain not matching wildcard certificate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100695depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200696x509_verify:"data_files/cert_example_wildcard.crt":"data_files/test-ca.crt":"data_files/crl.pem":"example.com":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakkera8cd2392012-02-11 16:09:32 +0000697
TRodziewicz75628d52021-06-18 12:56:27 +0200698X509 CRT verification #24 (domain matching CN of multi certificate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100699depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200700x509_verify:"data_files/cert_example_multi.crt":"data_files/test-ca.crt":"data_files/crl.pem":"www.example.com":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakkera8cd2392012-02-11 16:09:32 +0000701
TRodziewicz75628d52021-06-18 12:56:27 +0200702X509 CRT verification #25 (domain matching multi certificate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100703depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200704x509_verify:"data_files/cert_example_multi.crt":"data_files/test-ca.crt":"data_files/crl.pem":"example.net":0:0:"compat":"NULL"
Paul Bakkera8cd2392012-02-11 16:09:32 +0000705
TRodziewicz75628d52021-06-18 12:56:27 +0200706X509 CRT verification #26 (domain not matching multi certificate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100707depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200708x509_verify:"data_files/cert_example_multi.crt":"data_files/test-ca.crt":"data_files/crl.pem":"www.example.net":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakkera8cd2392012-02-11 16:09:32 +0000709
TRodziewicz75628d52021-06-18 12:56:27 +0200710X509 CRT verification #27.1 (domain not matching multi certificate: suffix)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100711depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200712x509_verify:"data_files/cert_example_multi.crt":"data_files/test-ca.crt":"data_files/crl.pem":"xample.net":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakkera8cd2392012-02-11 16:09:32 +0000713
TRodziewicz75628d52021-06-18 12:56:27 +0200714X509 CRT verification #27.2 (domain not matching multi certificate: head junk)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100715depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200716x509_verify:"data_files/cert_example_multi.crt":"data_files/test-ca.crt":"data_files/crl.pem":"bexample.net":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakkera8cd2392012-02-11 16:09:32 +0000717
TRodziewicz75628d52021-06-18 12:56:27 +0200718X509 CRT verification #28 (domain not matching wildcard in multi certificate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100719depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200720x509_verify:"data_files/cert_example_multi.crt":"data_files/test-ca.crt":"data_files/crl.pem":"example.org":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"compat":"NULL"
Paul Bakker57b12982012-02-11 17:38:38 +0000721
TRodziewicz75628d52021-06-18 12:56:27 +0200722X509 CRT verification #29 (domain matching wildcard in multi certificate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100723depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200724x509_verify:"data_files/cert_example_multi.crt":"data_files/test-ca.crt":"data_files/crl.pem":"mail.example.org":0:0:"compat":"NULL"
Paul Bakker57b12982012-02-11 17:38:38 +0000725
TRodziewicz75628d52021-06-18 12:56:27 +0200726X509 CRT verification #30 (domain matching multi certificate without CN)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100727depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200728x509_verify:"data_files/cert_example_multi_nocn.crt":"data_files/test-ca.crt":"data_files/crl.pem":"www.shotokan-braunschweig.de":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Paul Bakker91956622012-08-23 10:46:54 +0000729
TRodziewicz75628d52021-06-18 12:56:27 +0200730X509 CRT verification #31 (domain not matching multi certificate without CN)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100731depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200732x509_verify:"data_files/cert_example_multi_nocn.crt":"data_files/test-ca.crt":"data_files/crl.pem":"www.example.net":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH + MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Paul Bakker91956622012-08-23 10:46:54 +0000733
TRodziewicz75628d52021-06-18 12:56:27 +0200734X509 CRT verification #32 (Valid, EC cert, RSA CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100735depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP192R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200736x509_verify:"data_files/server3.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard6009c3a2013-08-09 11:27:14 +0200737
TRodziewicz75628d52021-06-18 12:56:27 +0200738X509 CRT verification #33 (Valid, RSA cert, EC CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100739depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Gilles Peskineef86ab22017-05-05 18:59:02 +0200740x509_verify:"data_files/server4.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard6009c3a2013-08-09 11:27:14 +0200741
TRodziewicz75628d52021-06-18 12:56:27 +0200742X509 CRT verification #34 (Valid, EC cert, EC CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100743depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Gilles Peskineef86ab22017-05-05 18:59:02 +0200744x509_verify:"data_files/server5.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard6009c3a2013-08-09 11:27:14 +0200745
TRodziewicz75628d52021-06-18 12:56:27 +0200746X509 CRT verification #35 (Revoked, EC CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100747depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200748x509_verify:"data_files/server6.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
Manuel Pégourié-Gonnard6009c3a2013-08-09 11:27:14 +0200749
TRodziewicz75628d52021-06-18 12:56:27 +0200750X509 CRT verification #36 (Valid, EC CA, SHA1 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100751depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200752x509_verify:"data_files/server5-sha1.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard6009c3a2013-08-09 11:27:14 +0200753
TRodziewicz75628d52021-06-18 12:56:27 +0200754X509 CRT verification #37 (Valid, EC CA, SHA224 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100755depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA224
Gilles Peskineef86ab22017-05-05 18:59:02 +0200756x509_verify:"data_files/server5-sha224.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard6009c3a2013-08-09 11:27:14 +0200757
TRodziewicz75628d52021-06-18 12:56:27 +0200758X509 CRT verification #38 (Valid, EC CA, SHA384 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100759depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA384:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Gilles Peskineef86ab22017-05-05 18:59:02 +0200760x509_verify:"data_files/server5-sha384.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard6009c3a2013-08-09 11:27:14 +0200761
TRodziewicz75628d52021-06-18 12:56:27 +0200762X509 CRT verification #39 (Valid, EC CA, SHA512 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100763depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA512:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Gilles Peskineef86ab22017-05-05 18:59:02 +0200764x509_verify:"data_files/server5-sha512.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200765
TRodziewicz75628d52021-06-18 12:56:27 +0200766X509 CRT verification #40 (Valid, depth 0, RSA, CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100767depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200768x509_verify:"data_files/test-ca.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200769
TRodziewicz75628d52021-06-18 12:56:27 +0200770X509 CRT verification #41 (Valid, depth 0, EC, CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100771depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200772x509_verify:"data_files/test-ca2.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200773
TRodziewicz75628d52021-06-18 12:56:27 +0200774X509 CRT verification #42 (Depth 0, not CA, RSA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100775depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200776x509_verify:"data_files/server2.crt":"data_files/server2.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200777
TRodziewicz75628d52021-06-18 12:56:27 +0200778X509 CRT verification #43 (Depth 0, not CA, EC)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100779depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200780x509_verify:"data_files/server5.crt":"data_files/server5.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200781
TRodziewicz75628d52021-06-18 12:56:27 +0200782X509 CRT verification #44 (Corrupted signature, EC)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100783depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200784x509_verify:"data_files/server5-badsign.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200785
TRodziewicz75628d52021-06-18 12:56:27 +0200786X509 CRT verification #45 (Corrupted signature, RSA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100787depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200788x509_verify:"data_files/server2-badsign.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200789
TRodziewicz75628d52021-06-18 12:56:27 +0200790X509 CRT verification #45b (Corrupted signature, intermediate CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100791depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnard4dfc04a2017-06-05 11:12:13 +0200792x509_verify:"data_files/server7-badsign.crt":"data_files/test-ca2.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
793
TRodziewicz75628d52021-06-18 12:56:27 +0200794X509 CRT verification #46 (Valid, depth 2, EC-RSA-EC)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100795depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200796x509_verify:"data_files/server7_int-ca.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200797
TRodziewicz75628d52021-06-18 12:56:27 +0200798X509 CRT verification #47 (Untrusted, depth 2, EC-RSA-EC)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100799depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200800x509_verify:"data_files/server7_int-ca.crt":"data_files/test-ca.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200801
TRodziewicz75628d52021-06-18 12:56:27 +0200802X509 CRT verification #48 (Missing intermediate CA, EC-RSA-EC)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100803depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200804x509_verify:"data_files/server7.crt":"data_files/test-ca.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200805
TRodziewicz75628d52021-06-18 12:56:27 +0200806X509 CRT verification #49 (Valid, depth 2, RSA-EC-RSA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100807depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200808x509_verify:"data_files/server8_int-ca2.crt":"data_files/test-ca.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200809
TRodziewicz75628d52021-06-18 12:56:27 +0200810X509 CRT verification #50 (Valid, multiple CAs)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100811depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200812x509_verify:"data_files/server2.crt":"data_files/test-ca_cat12.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardb4e9ca92013-08-10 10:52:01 +0200813
TRodziewicz75628d52021-06-18 12:56:27 +0200814X509 CRT verification #51 (Valid, multiple CAs, reverse order)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100815depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200816x509_verify:"data_files/server2.crt":"data_files/test-ca_cat21.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard6009c3a2013-08-09 11:27:14 +0200817
TRodziewicz75628d52021-06-18 12:56:27 +0200818X509 CRT verification #52 (CA keyUsage valid)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100819depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Gilles Peskineef86ab22017-05-05 18:59:02 +0200820x509_verify:"data_files/server5.crt":"data_files/test-ca2.ku-crt_crl.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard99d4f192014-04-08 15:10:07 +0200821
TRodziewicz75628d52021-06-18 12:56:27 +0200822X509 CRT verification #53 (CA keyUsage missing cRLSign)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100823depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Gilles Peskineef86ab22017-05-05 18:59:02 +0200824x509_verify:"data_files/server5.crt":"data_files/test-ca2.ku-crt.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCRL_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnard99d4f192014-04-08 15:10:07 +0200825
TRodziewicz75628d52021-06-18 12:56:27 +0200826X509 CRT verification #54 (CA keyUsage missing cRLSign, no CRL)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100827depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C
Gilles Peskineef86ab22017-05-05 18:59:02 +0200828x509_verify:"data_files/server5.crt":"data_files/test-ca2.ku-crt.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard99d4f192014-04-08 15:10:07 +0200829
TRodziewicz75628d52021-06-18 12:56:27 +0200830X509 CRT verification #55 (CA keyUsage missing keyCertSign)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100831depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Gilles Peskineef86ab22017-05-05 18:59:02 +0200832x509_verify:"data_files/server5.crt":"data_files/test-ca2.ku-crl.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnard99d4f192014-04-08 15:10:07 +0200833
TRodziewicz75628d52021-06-18 12:56:27 +0200834X509 CRT verification #56 (CA keyUsage plain wrong)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100835depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Gilles Peskineef86ab22017-05-05 18:59:02 +0200836x509_verify:"data_files/server5.crt":"data_files/test-ca2.ku-ds.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnard99d4f192014-04-08 15:10:07 +0200837
TRodziewicz75628d52021-06-18 12:56:27 +0200838X509 CRT verification #57 (Valid, RSASSA-PSS, SHA-1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100839depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200840x509_verify:"data_files/server9.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard920e1cd2014-06-02 18:11:07 +0200841
TRodziewicz75628d52021-06-18 12:56:27 +0200842X509 CRT verification #58 (Valid, RSASSA-PSS, SHA-224)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100843depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA224:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200844x509_verify:"data_files/server9-sha224.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha224.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard920e1cd2014-06-02 18:11:07 +0200845
TRodziewicz75628d52021-06-18 12:56:27 +0200846X509 CRT verification #59 (Valid, RSASSA-PSS, SHA-256)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100847depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200848x509_verify:"data_files/server9-sha256.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha256.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard920e1cd2014-06-02 18:11:07 +0200849
TRodziewicz75628d52021-06-18 12:56:27 +0200850X509 CRT verification #60 (Valid, RSASSA-PSS, SHA-384)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100851depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA384:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200852x509_verify:"data_files/server9-sha384.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha384.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard920e1cd2014-06-02 18:11:07 +0200853
TRodziewicz75628d52021-06-18 12:56:27 +0200854X509 CRT verification #61 (Valid, RSASSA-PSS, SHA-512)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100855depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA512:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200856x509_verify:"data_files/server9-sha512.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha512.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard920e1cd2014-06-02 18:11:07 +0200857
TRodziewicz75628d52021-06-18 12:56:27 +0200858X509 CRT verification #62 (Revoked, RSASSA-PSS, SHA-1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100859depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200860x509_verify:"data_files/server9.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
Manuel Pégourié-Gonnard53882022014-06-05 17:53:52 +0200861
TRodziewicz75628d52021-06-18 12:56:27 +0200862X509 CRT verification #63 (Revoked, RSASSA-PSS, SHA-1, CRL badsign)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100863depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200864x509_verify:"data_files/server9.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha1-badsign.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCRL_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnard53882022014-06-05 17:53:52 +0200865
TRodziewicz75628d52021-06-18 12:56:27 +0200866X509 CRT verification #64 (Valid, RSASSA-PSS, SHA-1, not top)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100867depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200868x509_verify:"data_files/server9-with-ca.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard920e1cd2014-06-02 18:11:07 +0200869
TRodziewicz75628d52021-06-18 12:56:27 +0200870X509 CRT verification #65 (RSASSA-PSS, SHA1, bad cert signature)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100871depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200872x509_verify:"data_files/server9-badsign.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnard920e1cd2014-06-02 18:11:07 +0200873
TRodziewicz75628d52021-06-18 12:56:27 +0200874X509 CRT verification #66 (RSASSA-PSS, SHA1, no RSA CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100875depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200876x509_verify:"data_files/server9.crt":"data_files/test-ca2.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnard920e1cd2014-06-02 18:11:07 +0200877
TRodziewicz75628d52021-06-18 12:56:27 +0200878X509 CRT verification #67 (Valid, RSASSA-PSS, all defaults)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100879depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200880x509_verify:"data_files/server9-defaults.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha1.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardeacccb72014-06-05 18:00:08 +0200881
Manuel Pégourié-Gonnard3b1a7062022-06-28 12:47:44 +0200882X509 CRT verification #68 (RSASSA-PSS, wrong salt_len, !USE_PSA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100883depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1:!MBEDTLS_USE_PSA_CRYPTO
Manuel Pégourié-Gonnard4511ca02022-12-30 10:13:41 +0100884x509_verify:"data_files/server9-bad-saltlen.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnard5873b002014-06-06 18:04:09 +0200885
Manuel Pégourié-Gonnard3b1a7062022-06-28 12:47:44 +0200886X509 CRT verification #68 (RSASSA-PSS, wrong salt_len, USE_PSA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100887depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1:MBEDTLS_USE_PSA_CRYPTO
Manuel Pégourié-Gonnard4511ca02022-12-30 10:13:41 +0100888x509_verify:"data_files/server9-bad-saltlen.crt":"data_files/test-ca.crt":"data_files/crl-rsa-pss-sha1.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard3b1a7062022-06-28 12:47:44 +0200889
TRodziewicz75628d52021-06-18 12:56:27 +0200890X509 CRT verification #69 (RSASSA-PSS, wrong mgf_hash)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100891depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_X509_RSASSA_PSS_SUPPORT:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA224:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200892x509_verify:"data_files/server9-bad-mgfhash.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnard5873b002014-06-06 18:04:09 +0200893
TRodziewicz75628d52021-06-18 12:56:27 +0200894X509 CRT verification #70 (v1 trusted CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100895depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200896x509_verify:"data_files/server1-v1.crt":"data_files/test-ca-v1.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardc4eff162014-06-19 12:18:08 +0200897
TRodziewicz75628d52021-06-18 12:56:27 +0200898X509 CRT verification #71 (v1 trusted CA, other)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100899depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200900x509_verify:"data_files/server2-v1.crt":"data_files/server1-v1.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardc4eff162014-06-19 12:18:08 +0200901
TRodziewicz75628d52021-06-18 12:56:27 +0200902X509 CRT verification #72 (v1 chain)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100903depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200904x509_verify:"data_files/server2-v1-chain.crt":"data_files/test-ca-v1.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnardc4eff162014-06-19 12:18:08 +0200905
TRodziewicz75628d52021-06-18 12:56:27 +0200906X509 CRT verification #73 (selfsigned trusted without CA bit)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100907depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C
Gilles Peskineef86ab22017-05-05 18:59:02 +0200908x509_verify:"data_files/server5-selfsigned.crt":"data_files/server5-selfsigned.crt":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnardd249b7a2014-06-24 11:49:16 +0200909
TRodziewicz75628d52021-06-18 12:56:27 +0200910X509 CRT verification #74 (signed by selfsigned trusted without CA bit)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100911depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C
Gilles Peskineef86ab22017-05-05 18:59:02 +0200912x509_verify:"data_files/server6-ss-child.crt":"data_files/server5-selfsigned.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"compat":"NULL"
Manuel Pégourié-Gonnardd249b7a2014-06-24 11:49:16 +0200913
TRodziewicz75628d52021-06-18 12:56:27 +0200914X509 CRT verification #75 (encoding mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100915depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Gilles Peskineef86ab22017-05-05 18:59:02 +0200916x509_verify:"data_files/enco-cert-utf8str.pem":"data_files/enco-ca-prstr.pem":"data_files/crl.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard9c911da2014-10-17 12:23:49 +0200917
TRodziewicz75628d52021-06-18 12:56:27 +0200918X509 CRT verification #76 (multiple CRLs, not revoked)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100919depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200920x509_verify:"data_files/server5.crt":"data_files/test-ca_cat12.crt":"data_files/crl_cat_ec-rsa.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard57a5d602014-11-19 14:04:09 +0100921
TRodziewicz75628d52021-06-18 12:56:27 +0200922X509 CRT verification #77 (multiple CRLs, revoked)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100923depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200924x509_verify:"data_files/server6.crt":"data_files/test-ca_cat12.crt":"data_files/crl_cat_ec-rsa.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
Manuel Pégourié-Gonnard57a5d602014-11-19 14:04:09 +0100925
TRodziewicz75628d52021-06-18 12:56:27 +0200926X509 CRT verification #78 (multiple CRLs, revoked by second)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100927depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200928x509_verify:"data_files/server6.crt":"data_files/test-ca_cat12.crt":"data_files/crl_cat_rsa-ec.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
Manuel Pégourié-Gonnard57a5d602014-11-19 14:04:09 +0100929
TRodziewicz75628d52021-06-18 12:56:27 +0200930X509 CRT verification #79 (multiple CRLs, revoked by future)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100931depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200932x509_verify:"data_files/server6.crt":"data_files/test-ca_cat12.crt":"data_files/crl_cat_ecfut-rsa.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED|MBEDTLS_X509_BADCRL_FUTURE:"compat":"NULL"
Manuel Pégourié-Gonnard57a5d602014-11-19 14:04:09 +0100933
TRodziewicz75628d52021-06-18 12:56:27 +0200934X509 CRT verification #80 (multiple CRLs, first future, revoked by second)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100935depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200936x509_verify:"data_files/server1.crt":"data_files/test-ca_cat12.crt":"data_files/crl_cat_ecfut-rsa.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
Manuel Pégourié-Gonnard57a5d602014-11-19 14:04:09 +0100937
TRodziewicz75628d52021-06-18 12:56:27 +0200938X509 CRT verification #81 (multiple CRLs, none relevant)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100939depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Gilles Peskineef86ab22017-05-05 18:59:02 +0200940x509_verify:"data_files/enco-cert-utf8str.pem":"data_files/enco-ca-prstr.pem":"data_files/crl_cat_rsa-ec.pem":"NULL":0:0:"compat":"NULL"
Manuel Pégourié-Gonnard57a5d602014-11-19 14:04:09 +0100941
TRodziewicz75628d52021-06-18 12:56:27 +0200942X509 CRT verification #82 (Not yet valid CA and valid CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100943depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200944x509_verify:"data_files/server5.crt":"data_files/test-ca2_cat-future-present.crt":"data_files/crl-ec-sha1.pem":"NULL":0:0:"compat":"NULL"
Janos Follath12c868c2016-02-18 17:28:04 +0000945
TRodziewicz75628d52021-06-18 12:56:27 +0200946X509 CRT verification #83 (valid CA and Not yet valid CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100947depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200948x509_verify:"data_files/server5.crt":"data_files/test-ca2_cat-present-future.crt":"data_files/crl-ec-sha1.pem":"NULL":0:0:"compat":"NULL"
Janos Follath12c868c2016-02-18 17:28:04 +0000949
TRodziewicz75628d52021-06-18 12:56:27 +0200950X509 CRT verification #84 (valid CA and Not yet valid CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100951depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200952x509_verify:"data_files/server5.crt":"data_files/test-ca2_cat-present-past.crt":"data_files/crl-ec-sha1.pem":"NULL":0:0:"compat":"NULL"
Janos Follathdf4bca22016-02-19 15:57:17 +0000953
TRodziewicz75628d52021-06-18 12:56:27 +0200954X509 CRT verification #85 (Not yet valid CA and valid CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100955depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256
Gilles Peskineef86ab22017-05-05 18:59:02 +0200956x509_verify:"data_files/server5.crt":"data_files/test-ca2_cat-past-present.crt":"data_files/crl-ec-sha1.pem":"NULL":0:0:"compat":"NULL"
Janos Follathdf4bca22016-02-19 15:57:17 +0000957
TRodziewicz75628d52021-06-18 12:56:27 +0200958X509 CRT verification #86 (Not yet valid CA and invalid CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100959depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200960x509_verify:"data_files/server5.crt":"data_files/test-ca2_cat-future-invalid.crt":"data_files/crl-ec-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_FUTURE:"compat":"NULL"
Andres AG9f430c12016-12-13 09:59:07 +0000961
TRodziewicz75628d52021-06-18 12:56:27 +0200962X509 CRT verification #87 (Expired CA and invalid CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100963depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_HAVE_TIME_DATE
Gilles Peskineef86ab22017-05-05 18:59:02 +0200964x509_verify:"data_files/server5.crt":"data_files/test-ca2_cat-past-invalid.crt":"data_files/crl-ec-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_EXPIRED:"compat":"NULL"
Andres AG9f430c12016-12-13 09:59:07 +0000965
TRodziewicz75628d52021-06-18 12:56:27 +0200966X509 CRT verification #88 (Spurious cert in the chain)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100967depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Manuel Pégourié-Gonnardb341dd52017-06-06 10:25:43 +0200968x509_verify:"data_files/server7_spurious_int-ca.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha1.pem":"NULL":0:0:"compat":"NULL"
969
TRodziewicz75628d52021-06-18 12:56:27 +0200970X509 CRT verification #89 (Spurious cert later in the chain)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100971depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Manuel Pégourié-Gonnardb341dd52017-06-06 10:25:43 +0200972x509_verify:"data_files/server10_int3_spurious_int-ca2.crt":"data_files/test-ca.crt":"data_files/crl-ec-sha1.pem":"NULL":0:0:"compat":"NULL"
973
TRodziewicz75628d52021-06-18 12:56:27 +0200974X509 CRT verification #90 (EE with same name as trusted root)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100975depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnarda54f6cc2017-08-09 10:41:42 +0200976x509_verify:"data_files/server5-ss-forgeca.crt":"data_files/test-int-ca3.crt":"data_files/crl-ec-sha1.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:"":"NULL"
Manuel Pégourié-Gonnardc10afdb2017-06-29 09:48:08 +0200977
TRodziewicz75628d52021-06-18 12:56:27 +0200978X509 CRT verification #91 (same CA with good then bad key)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100979depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY
Manuel Pégourié-Gonnard2d825d42017-07-03 18:06:38 +0200980x509_verify:"data_files/server1.crt":"data_files/test-ca-good-alt.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
981
TRodziewicz75628d52021-06-18 12:56:27 +0200982X509 CRT verification #91 (same CA with bad then good key)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100983depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY
Manuel Pégourié-Gonnard2d825d42017-07-03 18:06:38 +0200984x509_verify:"data_files/server1.crt":"data_files/test-ca-alt-good.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"compat":"NULL"
985
TRodziewicz75628d52021-06-18 12:56:27 +0200986X509 CRT verification #92 (bad name, allowing callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100987depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnarda54f6cc2017-08-09 10:41:42 +0200988x509_verify:"data_files/server5.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"globalhost":0:0:"":"verify_all"
Manuel Pégourié-Gonnarda6568252017-07-05 18:14:38 +0200989
TRodziewicz75628d52021-06-18 12:56:27 +0200990X509 CRT verification #93 (Suite B invalid, EC cert, RSA CA)
Valerio Setti6c496a12023-04-07 15:53:51 +0200991depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_ECP_LIGHT:MBEDTLS_ECP_DP_SECP192R1_ENABLED:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Ron Eldorc1539982018-02-06 18:47:17 +0200992x509_verify:"data_files/server3.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_BAD_MD|MBEDTLS_X509_BADCERT_BAD_PK|MBEDTLS_X509_BADCERT_BAD_KEY|MBEDTLS_X509_BADCRL_BAD_MD|MBEDTLS_X509_BADCRL_BAD_PK:"suite_b":"NULL"
993
TRodziewicz75628d52021-06-18 12:56:27 +0200994X509 CRT verification #94 (Suite B invalid, RSA cert, EC CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100995depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_PKCS1_V15:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Ron Eldorc1539982018-02-06 18:47:17 +0200996x509_verify:"data_files/server4.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_BAD_PK:"suite_b":"NULL"
997
TRodziewicz75628d52021-06-18 12:56:27 +0200998X509 CRT verification #95 (Suite B Valid, EC cert, EC CA)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +0100999depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Ron Eldorc1539982018-02-06 18:47:17 +02001000x509_verify:"data_files/server5.crt":"data_files/test-ca2.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"suite_b":"NULL"
1001
TRodziewicz75628d52021-06-18 12:56:27 +02001002X509 CRT verification #96 (next profile Invalid Cert SHA224 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001003depends_on:MBEDTLS_MD_CAN_SHA224:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Ron Eldorc1539982018-02-06 18:47:17 +02001004x509_verify:"data_files/cert_sha224.crt":"data_files/test-ca.crt":"data_files/crl.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_BAD_MD|MBEDTLS_X509_BADCRL_BAD_MD:"next":"NULL"
1005
TRodziewicz75628d52021-06-18 12:56:27 +02001006X509 CRT verification #97 (next profile Valid Cert SHA256 Digest)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001007depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA1
Ron Eldorc1539982018-02-06 18:47:17 +02001008x509_verify:"data_files/cert_sha256.crt":"data_files/test-ca.crt":"data_files/crl-ec-sha256.pem":"NULL":0:0:"next":"NULL"
1009
TRodziewicz75628d52021-06-18 12:56:27 +02001010X509 CRT verification #98 (Revoked Cert, revocation date in the future, _with_ MBEDTLS_HAVE_TIME_DATE)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001011depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_HAVE_TIME_DATE
Raoul Strackxa4e86142020-06-15 17:03:13 +02001012x509_verify:"data_files/server1.crt":"data_files/test-ca.crt":"data_files/crl-futureRevocationDate.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED|MBEDTLS_X509_BADCRL_FUTURE:"compat":"NULL"
1013
TRodziewicz75628d52021-06-18 12:56:27 +02001014X509 CRT verification #99 (Revoked Cert, revocation date in the future, _without_ MBEDTLS_HAVE_TIME_DATE)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001015depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:!MBEDTLS_HAVE_TIME_DATE
Raoul Strackxa4e86142020-06-15 17:03:13 +02001016x509_verify:"data_files/server1.crt":"data_files/test-ca.crt":"data_files/crl-futureRevocationDate.pem":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_REVOKED:"compat":"NULL"
1017
Manuel Pégourié-Gonnard7d2a4d82020-07-23 12:39:53 +02001018X509 CRT verification: domain identical to IPv4 in SubjectAltName
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001019depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard7d2a4d82020-07-23 12:39:53 +02001020x509_verify:"data_files/server5-tricky-ip-san.crt":"data_files/server5-tricky-ip-san.crt":"data_files/crl_sha256.pem":"abcd":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"":"NULL"
1021
1022X509 CRT verification: domain identical to IPv6 in SubjectAltName
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001023depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard7d2a4d82020-07-23 12:39:53 +02001024x509_verify:"data_files/server5-tricky-ip-san.crt":"data_files/server5-tricky-ip-san.crt":"data_files/crl_sha256.pem":"abcd.example.com":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"":"NULL"
1025
Eugene K3208b0b2020-08-20 11:26:01 -04001026X509 CRT verification: matching IPv4 in SubjectAltName
Andrzej Kureke4046122023-04-12 09:44:44 -04001027depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C
Eugene K3208b0b2020-08-20 11:26:01 -04001028x509_verify:"data_files/server5-tricky-ip-san.crt":"data_files/server5-tricky-ip-san.crt":"data_files/crl_sha256.pem":"97.98.99.100":0:0:"":"NULL"
1029
1030X509 CRT verification: mismatching IPv4 in SubjectAltName
Andrzej Kureke4046122023-04-12 09:44:44 -04001031depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C
Eugene K3208b0b2020-08-20 11:26:01 -04001032x509_verify:"data_files/server5-tricky-ip-san.crt":"data_files/server5-tricky-ip-san.crt":"data_files/crl_sha256.pem":"7.8.9.10":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"":"NULL"
1033
1034X509 CRT verification: IPv4 with trailing data in SubjectAltName
Andrzej Kureke4046122023-04-12 09:44:44 -04001035depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C
Eugene K3208b0b2020-08-20 11:26:01 -04001036x509_verify:"data_files/server5-tricky-ip-san.crt":"data_files/server5-tricky-ip-san.crt":"data_files/crl_sha256.pem":"97.98.99.100?":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"":"NULL"
1037
1038X509 CRT verification: matching IPv6 in SubjectAltName
Andrzej Kureke4046122023-04-12 09:44:44 -04001039depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C
Eugene K3208b0b2020-08-20 11:26:01 -04001040x509_verify:"data_files/server5-tricky-ip-san.crt":"data_files/server5-tricky-ip-san.crt":"data_files/crl_sha256.pem":"6162\:6364\:2E65\:7861\:6D70\:6C65\:2E63\:6F6D":0:0:"":"NULL"
1041
1042X509 CRT verification: mismatching IPv6 in SubjectAltName
Andrzej Kureke4046122023-04-12 09:44:44 -04001043depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C
Eugene K3208b0b2020-08-20 11:26:01 -04001044x509_verify:"data_files/server5-tricky-ip-san.crt":"data_files/server5-tricky-ip-san.crt":"data_files/crl_sha256.pem":"6162\:6364\:\:6F6D":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_CN_MISMATCH:"":"NULL"
1045
Glenn Strauss6f545ac2022-10-25 15:02:14 -04001046X509 CRT parse CN: IPv4 valid address
1047x509_crt_parse_cn_inet_pton:"10.10.10.10":"0A0A0A0A":4
1048
1049X509 CRT parse CN: IPv4 excess 0s
1050x509_crt_parse_cn_inet_pton:"10.0000.10.10":"":0
1051
1052X509 CRT parse CN: IPv4 short address
1053x509_crt_parse_cn_inet_pton:"10.10.10":"":0
1054
1055X509 CRT parse CN: IPv4 invalid ? char
1056x509_crt_parse_cn_inet_pton:"10.10?10.10":"":0
1057
1058X509 CRT parse CN: IPv4 invalid - char
1059x509_crt_parse_cn_inet_pton:"10.-10.10.10":"":0
1060
1061X509 CRT parse CN: IPv4 invalid + char
1062x509_crt_parse_cn_inet_pton:"10.+10.10.10":"":0
1063
1064X509 CRT parse CN: IPv4 begin dot
1065x509_crt_parse_cn_inet_pton:".10.10.10.10":"":0
1066
1067X509 CRT parse CN: IPv4 end dot
1068x509_crt_parse_cn_inet_pton:"10.10.10.10.":"":0
1069
1070X509 CRT parse CN: IPv4 consecutive dots
1071x509_crt_parse_cn_inet_pton:"10.10..10.10.":"":0
1072
1073X509 CRT parse CN: IPv4 overlarge octet 256
1074x509_crt_parse_cn_inet_pton:"10.256.10.10":"":0
1075
Andrzej Kurekfe050812023-04-12 09:45:07 -04001076X509 CRT parse CN: IPv4 overlarge octet 999
1077x509_crt_parse_cn_inet_pton:"10.10.10.999":"":0
1078
Glenn Strauss6f545ac2022-10-25 15:02:14 -04001079X509 CRT parse CN: IPv4 overlarge octet 1000
1080x509_crt_parse_cn_inet_pton:"10.1000.10.10":"":0
1081
1082X509 CRT parse CN: IPv4 additional octet
1083x509_crt_parse_cn_inet_pton:"10.10.10.10.10":"":0
1084
1085X509 CRT parse CN: IPv6 valid address
1086x509_crt_parse_cn_inet_pton:"1\:2\:3\:4\:5\:6\:7\:8":"00010002000300040005000600070008":16
1087
1088X509 CRT parse CN: IPv6 valid address shorthand
1089x509_crt_parse_cn_inet_pton:"6263\:\:1":"62630000000000000000000000000001":16
1090
1091X509 CRT parse CN: IPv6 valid address shorthand start
1092x509_crt_parse_cn_inet_pton:"\:\:1":"00000000000000000000000000000001":16
1093
1094X509 CRT parse CN: IPv6 valid address extra 0s
1095x509_crt_parse_cn_inet_pton:"0001\:\:0001\:0001":"00010000000000000000000000010001":16
1096
1097X509 CRT parse CN: IPv6 invalid address excess 0s
1098x509_crt_parse_cn_inet_pton:"1\:00000\:1\:0":"":0
1099
1100X509 CRT parse CN: IPv6 invalid address - start single colon
1101x509_crt_parse_cn_inet_pton:"\:6263\:\:1":"":0
1102
1103X509 CRT parse CN: IPv6 invalid address - end single colon
1104x509_crt_parse_cn_inet_pton:"6263\:\:1\:":"":0
1105
1106X509 CRT parse CN: IPv6 short address
1107x509_crt_parse_cn_inet_pton:"1\:1\:1":"":0
1108
1109X509 CRT parse CN: IPv6 wildcard address
1110x509_crt_parse_cn_inet_pton:"\:\:":"00000000000000000000000000000000":16
1111
1112X509 CRT parse CN: IPv6 address too long
1113x509_crt_parse_cn_inet_pton:"1\:2\:3\:4\:5\:6\:7\:8\:9":"":0
1114
1115X509 CRT parse CN: IPv6 long hextet
1116x509_crt_parse_cn_inet_pton:"12345\:\:1":"":0
1117
1118X509 CRT parse CN: IPv6 invalid char
1119x509_crt_parse_cn_inet_pton:"\:\:\:1":"":0
1120
1121X509 CRT parse CN: IPv6 invalid - char
1122x509_crt_parse_cn_inet_pton:"\:\:-1\:1":"":0
1123
1124X509 CRT parse CN: IPv6 invalid + char
1125x509_crt_parse_cn_inet_pton:"\:\:+1\:1":"":0
1126
1127X509 CRT parse CN: IPv6 valid address IPv4-mapped
1128x509_crt_parse_cn_inet_pton:"\:\:ffff\:1.2.3.4":"00000000000000000000ffff01020304":16
1129
1130X509 CRT parse CN: IPv6 invalid address IPv4-mapped #1
1131x509_crt_parse_cn_inet_pton:"\:\:ffff\:999.2.3.4":"":0
1132
1133X509 CRT parse CN: IPv6 invalid address IPv4-mapped #2
Andrzej Kurekaf04f632023-04-18 07:26:59 -04001134x509_crt_parse_cn_inet_pton:"\:\:ffff\:1111.2.3.4":"":0
1135
1136X509 CRT parse CN: IPv6 invalid address IPv4-mapped #3
Glenn Strauss6f545ac2022-10-25 15:02:14 -04001137x509_crt_parse_cn_inet_pton:"\:\:1.2.3.4\:ffff":"":0
1138
Hanno Becker2389d162019-02-14 12:52:47 +00001139X509 CRT verification with ca callback: failure
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001140depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
Hanno Beckercbb59032019-03-28 14:14:22 +00001141x509_verify_ca_cb_failure:"data_files/server1.crt":"data_files/test-ca.crt":"NULL":MBEDTLS_ERR_X509_FATAL_ERROR
Jarno Lamsa557426a2019-03-27 17:08:29 +02001142
Hanno Becker2389d162019-02-14 12:52:47 +00001143X509 CRT verification callback: bad name
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001144depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001145x509_verify_callback:"data_files/server5.crt":"data_files/test-ca2.crt":"globalhost":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 1 - serial C1\:43\:E2\:7E\:62\:43\:CC\:E8 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000000\ndepth 0 - serial 09 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000004\n"
Manuel Pégourié-Gonnarda6568252017-07-05 18:14:38 +02001146
Hanno Becker2389d162019-02-14 12:52:47 +00001147X509 CRT verification callback: trusted EE cert
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001148depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001149x509_verify_callback:"data_files/server5-selfsigned.crt":"data_files/server5-selfsigned.crt":"NULL":0:"depth 0 - serial 53\:A2\:CB\:4B\:12\:4E\:AD\:83\:7D\:A8\:94\:B2 - subject CN=selfsigned, OU=testing, O=PolarSSL, C=NL - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001150
Hanno Becker2389d162019-02-14 12:52:47 +00001151X509 CRT verification callback: trusted EE cert, expired
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001152depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_HAVE_TIME_DATE
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001153x509_verify_callback:"data_files/server5-ss-expired.crt":"data_files/server5-ss-expired.crt":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 0 - serial D8\:64\:61\:05\:E3\:A3\:CD\:78 - subject C=UK, O=mbed TLS, OU=testsuite, CN=localhost - flags 0x00000001\n"
Manuel Pégourié-Gonnardbc313012017-06-27 12:51:52 +02001154
Hanno Becker2389d162019-02-14 12:52:47 +00001155X509 CRT verification callback: simple
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001156depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Hanno Becker381c77c2018-11-01 15:07:42 +00001157x509_verify_callback:"data_files/server1.crt":"data_files/test-ca.crt":"NULL":0:"depth 1 - serial 03 - subject C=NL, O=PolarSSL, CN=PolarSSL Test CA - flags 0x00000000\ndepth 0 - serial 01 - subject C=NL, O=PolarSSL, CN=PolarSSL Server 1 - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001158
Hanno Becker2389d162019-02-14 12:52:47 +00001159X509 CRT verification callback: simple, EE expired
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001160depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001161x509_verify_callback:"data_files/server5-expired.crt":"data_files/test-ca2.crt":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 1 - serial C1\:43\:E2\:7E\:62\:43\:CC\:E8 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000000\ndepth 0 - serial 1E - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000001\n"
Manuel Pégourié-Gonnardbc313012017-06-27 12:51:52 +02001162
Hanno Becker2389d162019-02-14 12:52:47 +00001163X509 CRT verification callback: simple, root expired
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001164depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001165x509_verify_callback:"data_files/server5.crt":"data_files/test-ca2-expired.crt":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 1 - serial 01 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000001\ndepth 0 - serial 09 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnardbc313012017-06-27 12:51:52 +02001166
Hanno Becker2389d162019-02-14 12:52:47 +00001167X509 CRT verification callback: two trusted roots
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001168depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker381c77c2018-11-01 15:07:42 +00001169x509_verify_callback:"data_files/server1.crt":"data_files/test-ca_cat12.crt":"NULL":0:"depth 1 - serial 03 - subject C=NL, O=PolarSSL, CN=PolarSSL Test CA - flags 0x00000000\ndepth 0 - serial 01 - subject C=NL, O=PolarSSL, CN=PolarSSL Server 1 - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001170
Hanno Becker2389d162019-02-14 12:52:47 +00001171X509 CRT verification callback: two trusted roots, reversed order
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001172depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker381c77c2018-11-01 15:07:42 +00001173x509_verify_callback:"data_files/server1.crt":"data_files/test-ca_cat21.crt":"NULL":0:"depth 1 - serial 03 - subject C=NL, O=PolarSSL, CN=PolarSSL Test CA - flags 0x00000000\ndepth 0 - serial 01 - subject C=NL, O=PolarSSL, CN=PolarSSL Server 1 - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001174
Hanno Becker2389d162019-02-14 12:52:47 +00001175X509 CRT verification callback: root included
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001176depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker381c77c2018-11-01 15:07:42 +00001177x509_verify_callback:"data_files/server1_ca.crt":"data_files/test-ca_cat21.crt":"NULL":0:"depth 1 - serial 03 - subject C=NL, O=PolarSSL, CN=PolarSSL Test CA - flags 0x00000000\ndepth 0 - serial 01 - subject C=NL, O=PolarSSL, CN=PolarSSL Server 1 - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001178
Hanno Becker2389d162019-02-14 12:52:47 +00001179X509 CRT verification callback: intermediate ca
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001180depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001181x509_verify_callback:"data_files/server7_int-ca.crt":"data_files/test-ca_cat12.crt":"NULL":0:"depth 2 - serial C1\:43\:E2\:7E\:62\:43\:CC\:E8 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000000\ndepth 1 - serial 0E - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate CA - flags 0x00000000\ndepth 0 - serial 10 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001182
Hanno Becker2389d162019-02-14 12:52:47 +00001183X509 CRT verification callback: intermediate ca, root included
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001184depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001185x509_verify_callback:"data_files/server7_int-ca_ca2.crt":"data_files/test-ca_cat12.crt":"NULL":0:"depth 2 - serial C1\:43\:E2\:7E\:62\:43\:CC\:E8 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000000\ndepth 1 - serial 0E - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate CA - flags 0x00000000\ndepth 0 - serial 10 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001186
Hanno Becker2389d162019-02-14 12:52:47 +00001187X509 CRT verification callback: intermediate ca trusted
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001188depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001189x509_verify_callback:"data_files/server7_int-ca_ca2.crt":"data_files/test-int-ca.crt":"NULL":0:"depth 1 - serial 0E - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate CA - flags 0x00000000\ndepth 0 - serial 10 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnardfdbdd722015-09-01 16:35:00 +02001190
Hanno Becker2389d162019-02-14 12:52:47 +00001191X509 CRT verification callback: intermediate ca, EE expired
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001192depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001193x509_verify_callback:"data_files/server7-expired.crt":"data_files/test-ca2.crt":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 2 - serial C1\:43\:E2\:7E\:62\:43\:CC\:E8 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000000\ndepth 1 - serial 0E - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate CA - flags 0x00000000\ndepth 0 - serial 10 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000001\n"
Manuel Pégourié-Gonnardbc313012017-06-27 12:51:52 +02001194
Hanno Becker2389d162019-02-14 12:52:47 +00001195X509 CRT verification callback: intermediate ca, int expired
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001196depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001197x509_verify_callback:"data_files/server7_int-ca-exp.crt":"data_files/test-ca2.crt":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 2 - serial C1\:43\:E2\:7E\:62\:43\:CC\:E8 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000000\ndepth 1 - serial 0E - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate CA - flags 0x00000001\ndepth 0 - serial 10 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnardbc313012017-06-27 12:51:52 +02001198
Hanno Becker2389d162019-02-14 12:52:47 +00001199X509 CRT verification callback: intermediate ca, root expired
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001200depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1:MBEDTLS_HAVE_TIME_DATE
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001201x509_verify_callback:"data_files/server7_int-ca.crt":"data_files/test-ca2-expired.crt":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 2 - serial 01 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000001\ndepth 1 - serial 0E - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate CA - flags 0x00000000\ndepth 0 - serial 10 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnardbc313012017-06-27 12:51:52 +02001202
Hanno Becker2389d162019-02-14 12:52:47 +00001203X509 CRT verification callback: two intermediates
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001204depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Hanno Becker381c77c2018-11-01 15:07:42 +00001205x509_verify_callback:"data_files/server10_int3_int-ca2.crt":"data_files/test-ca_cat21.crt":"NULL":0:"depth 3 - serial 03 - subject C=NL, O=PolarSSL, CN=PolarSSL Test CA - flags 0x00000000\ndepth 2 - serial 0F - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate EC CA - flags 0x00000000\ndepth 1 - serial 4D - subject C=UK, O=mbed TLS, CN=mbed TLS Test intermediate CA 3 - flags 0x00000000\ndepth 0 - serial 4B - subject CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001206
Hanno Becker2389d162019-02-14 12:52:47 +00001207X509 CRT verification callback: two intermediates, root included
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001208depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Hanno Becker381c77c2018-11-01 15:07:42 +00001209x509_verify_callback:"data_files/server10_int3_int-ca2_ca.crt":"data_files/test-ca_cat21.crt":"NULL":0:"depth 3 - serial 03 - subject C=NL, O=PolarSSL, CN=PolarSSL Test CA - flags 0x00000000\ndepth 2 - serial 0F - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate EC CA - flags 0x00000000\ndepth 1 - serial 4D - subject C=UK, O=mbed TLS, CN=mbed TLS Test intermediate CA 3 - flags 0x00000000\ndepth 0 - serial 4B - subject CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnard560fea32015-09-01 11:59:24 +02001210
Hanno Becker2389d162019-02-14 12:52:47 +00001211X509 CRT verification callback: two intermediates, top int trusted
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001212depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001213x509_verify_callback:"data_files/server10_int3_int-ca2.crt":"data_files/test-int-ca2.crt":"NULL":0:"depth 2 - serial 0F - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate EC CA - flags 0x00000000\ndepth 1 - serial 4D - subject C=UK, O=mbed TLS, CN=mbed TLS Test intermediate CA 3 - flags 0x00000000\ndepth 0 - serial 4B - subject CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnardfdbdd722015-09-01 16:35:00 +02001214
Hanno Becker2389d162019-02-14 12:52:47 +00001215X509 CRT verification callback: two intermediates, low int trusted
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001216depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_RSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001217x509_verify_callback:"data_files/server10_int3_int-ca2_ca.crt":"data_files/test-int-ca3.crt":"NULL":0:"depth 1 - serial 4D - subject C=UK, O=mbed TLS, CN=mbed TLS Test intermediate CA 3 - flags 0x00000000\ndepth 0 - serial 4B - subject CN=localhost - flags 0x00000000\n"
Manuel Pégourié-Gonnardfdbdd722015-09-01 16:35:00 +02001218
Hanno Becker2389d162019-02-14 12:52:47 +00001219X509 CRT verification callback: no intermediate, bad signature
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001220depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001221x509_verify_callback:"data_files/server5-badsign.crt":"data_files/test-ca2.crt":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 0 - serial 09 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000008\n"
Manuel Pégourié-Gonnard9bc860c2017-07-14 11:32:38 +02001222
Hanno Becker2389d162019-02-14 12:52:47 +00001223X509 CRT verification callback: one intermediate, bad signature
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001224depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnardbe2f0b52017-08-21 11:00:22 +02001225x509_verify_callback:"data_files/server7-badsign.crt":"data_files/test-ca2.crt":"NULL":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"depth 2 - serial C1\:43\:E2\:7E\:62\:43\:CC\:E8 - subject C=NL, O=PolarSSL, CN=Polarssl Test EC CA - flags 0x00000000\ndepth 1 - serial 0E - subject C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate CA - flags 0x00000000\ndepth 0 - serial 10 - subject C=NL, O=PolarSSL, CN=localhost - flags 0x00000008\n"
Manuel Pégourié-Gonnard9bc860c2017-07-14 11:32:38 +02001226
Hanno Becker2389d162019-02-14 12:52:47 +00001227X509 CRT ASN1 (Empty Certificate)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02001228x509parse_crt:"":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001229
Hanno Becker2389d162019-02-14 12:52:47 +00001230X509 CRT ASN1 (inv Certificate, bad tag)
Hanno Becker0f5acc12019-06-04 16:13:23 +01001231x509parse_crt:"0500":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001232
Hanno Becker2389d162019-02-14 12:52:47 +00001233X509 CRT ASN1 (inv Certificate, no length)
Hanno Beckera5c481e2019-06-04 15:19:09 +01001234x509parse_crt:"30":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001235
Hanno Becker2389d162019-02-14 12:52:47 +00001236X509 CRT ASN1 (inv Certificate, bad length encoding)
Hanno Beckera5c481e2019-06-04 15:19:09 +01001237x509parse_crt:"3085":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Paul Bakkerfae618f2011-10-12 11:53:52 +00001238
Hanno Becker2389d162019-02-14 12:52:47 +00001239X509 CRT ASN1 (inv Certificate, length data incomplete)
Hanno Beckera5c481e2019-06-04 15:19:09 +01001240x509parse_crt:"308200":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Paul Bakkerc26a1892009-07-19 20:30:14 +00001241
Hanno Becker2389d162019-02-14 12:52:47 +00001242X509 CRT ASN1 (inv Certificate, length out of bounds)
Hanno Beckera5c481e2019-06-04 15:19:09 +01001243x509parse_crt:"3001":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Paul Bakkerc26a1892009-07-19 20:30:14 +00001244
Hanno Becker2389d162019-02-14 12:52:47 +00001245X509 CRT ASN1 (inv TBS, invalid tag)
Hanno Becker0f5acc12019-06-04 16:13:23 +01001246x509parse_crt:"30020500":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001247
Hanno Becker2389d162019-02-14 12:52:47 +00001248X509 CRT ASN1 (inv TBS, length missing)
Hanno Beckera5c481e2019-06-04 15:19:09 +01001249x509parse_crt:"300130":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1250
Hanno Becker2389d162019-02-14 12:52:47 +00001251X509 CRT ASN1 (inv TBS, invalid length encoding)
Paul Bakker37940d9f2009-07-10 22:38:58 +00001252x509parse_crt:"30023085":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001253
Hanno Becker2389d162019-02-14 12:52:47 +00001254X509 CRT ASN1 (inv TBS, length data incomplete)
Hanno Beckera5c481e2019-06-04 15:19:09 +01001255x509parse_crt:"300430839999":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001256
Hanno Becker2389d162019-02-14 12:52:47 +00001257X509 CRT ASN1 (inv TBS, length out of bounds)
Hanno Beckera5c481e2019-06-04 15:19:09 +01001258x509parse_crt:"30023003":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001259
Hanno Becker2389d162019-02-14 12:52:47 +00001260X509 CRT ASN1 (TBS empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001261depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera5c481e2019-06-04 15:19:09 +01001262x509parse_crt:"30153000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001263
Hanno Becker0f5acc12019-06-04 16:13:23 +01001264X509 CRT ASN1 (TBS, invalid version tag, serial missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001265depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker0f5acc12019-06-04 16:13:23 +01001266x509parse_crt:"301730020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001267
Hanno Becker2389d162019-02-14 12:52:47 +00001268X509 CRT ASN1 (TBS, valid outer version tag, no outer length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001269depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001270x509parse_crt:"30163001a0300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001271
Hanno Becker2389d162019-02-14 12:52:47 +00001272X509 CRT ASN1 (TBS, inv inner version tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001273depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker0f5acc12019-06-04 16:13:23 +01001274x509parse_crt:"30193004a0020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_VERSION + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001275
Hanno Becker2389d162019-02-14 12:52:47 +00001276X509 CRT ASN1 (TBS, valid inner version tag, no inner length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001277depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001278x509parse_crt:"30183003a00102300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_VERSION + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001279
Hanno Becker2389d162019-02-14 12:52:47 +00001280X509 CRT ASN1 (TBS, valid inner version tag, inv inner length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001281depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001282x509parse_crt:"30193004a0020285300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_VERSION + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001283
Hanno Becker2389d162019-02-14 12:52:47 +00001284X509 CRT ASN1 (TBS, valid inner version tag, inner length too large for int)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001285depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Gilles Peskine2dedcc52019-09-11 17:23:07 +02001286# tbsCertificate.version = 0x01000000000000000000000000000000 rejected by mbedtls_asn1_get_int
1287x509parse_crt:"30293014a012021001000000000000000000000000000000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_VERSION + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001288
Hanno Becker2389d162019-02-14 12:52:47 +00001289X509 CRT ASN1 (TBS, valid inner version tag, inner vs. outer length mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001290depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001291x509parse_crt:"301b3006a00402010200300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_VERSION + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001292
Hanno Becker2389d162019-02-14 12:52:47 +00001293X509 CRT ASN1 (TBS, valid version tag, length exceeds TBS)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001294depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001295x509parse_crt:"30293014a012021100000000000000000000000000000000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_VERSION + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001296
Hanno Becker2389d162019-02-14 12:52:47 +00001297X509 CRT ASN1 (TBS, valid version tag + length, unknown version number 3)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001298depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001299x509parse_crt:"308196308180a0030201038204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_UNKNOWN_VERSION
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001300
Hanno Becker2389d162019-02-14 12:52:47 +00001301X509 CRT ASN1 (TBS, valid version tag + length, unknown version number 4)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001302depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001303x509parse_crt:"308196308180a0030201048204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_UNKNOWN_VERSION
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001304
Hanno Becker2389d162019-02-14 12:52:47 +00001305X509 CRT ASN1 (TBS, valid version tag + length, version number overflow)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001306depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001307x509parse_crt:"308199308183a00602047FFFFFFF8204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_UNKNOWN_VERSION
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001308
Hanno Becker2389d162019-02-14 12:52:47 +00001309X509 CRT ASN1 (TBS, serial missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001310depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001311x509parse_crt:"301a3005a003020102300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker345fb492009-07-20 21:26:07 +00001312
Hanno Becker2389d162019-02-14 12:52:47 +00001313X509 CRT ASN1 (TBS, inv serial, tag wrong)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001314depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker0f5acc12019-06-04 16:13:23 +01001315x509parse_crt:"301c3007a0030201020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001316
Hanno Becker2389d162019-02-14 12:52:47 +00001317X509 CRT ASN1 (TBS, inv serial, length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001318depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001319x509parse_crt:"301b3006a00302010282300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker345fb492009-07-20 21:26:07 +00001320
Hanno Becker2389d162019-02-14 12:52:47 +00001321X509 CRT ASN1 (TBS, inv serial, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001322depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckere7d8f962019-06-04 15:25:00 +01001323x509parse_crt:"301c3007a0030201028285300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001324
Hanno Becker2389d162019-02-14 12:52:47 +00001325X509 CRT ASN1 (TBS, inv serial, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001326depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckere7d8f962019-06-04 15:25:00 +01001327x509parse_crt:"301c3007a0030201028201300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker345fb492009-07-20 21:26:07 +00001328
Hanno Becker2389d162019-02-14 12:52:47 +00001329X509 CRT ASN1 (TBS, AlgID missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001330depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Beckera9ef4122019-06-04 15:24:18 +01001331x509parse_crt:"3020300ba0030201028204deadbeef300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001332
Hanno Becker2389d162019-02-14 12:52:47 +00001333X509 CRT ASN1 (TBS, inv AlgID, tag wrong)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001334depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker0f5acc12019-06-04 16:13:23 +01001335x509parse_crt:"3022300da0030201028204deadbeef0500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001336
Hanno Becker2389d162019-02-14 12:52:47 +00001337X509 CRT ASN1 (TBS, inv AlgID, OID missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001338depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001339x509parse_crt:"307b3073a0030201008204deadbeef3000300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff3000030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001340
Hanno Becker2389d162019-02-14 12:52:47 +00001341X509 CRT ASN1 (TBS, inv AlgID, OID tag wrong)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001342depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001343x509parse_crt:"307f3075a0030201008204deadbeef30020500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff30020500030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001344
Hanno Becker2389d162019-02-14 12:52:47 +00001345X509 CRT ASN1 (TBS, inv AlgID, OID inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001346depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001347x509parse_crt:"307f3075a0030201008204deadbeef30020685300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff30020685030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001348
Hanno Becker2389d162019-02-14 12:52:47 +00001349X509 CRT ASN1 (TBS, inv AlgID, OID length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001350depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001351x509parse_crt:"307f3075a0030201008204deadbeef30020601300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff30020601030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001352
Hanno Becker2389d162019-02-14 12:52:47 +00001353X509 CRT ASN1 (TBS, inv AlgID, OID empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001354depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001355x509parse_crt:"307f3075a0030201008204deadbeef30020600300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff30020600030200ff":"":MBEDTLS_ERR_X509_UNKNOWN_SIG_ALG + MBEDTLS_ERR_OID_NOT_FOUND
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001356
Hanno Becker2389d162019-02-14 12:52:47 +00001357X509 CRT ASN1 (TBS, inv AlgID, OID unknown)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001358depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001359x509parse_crt:"3081873079a0030201008204deadbeef30060604deadbeef300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff30060604deadbeef030200ff":"":MBEDTLS_ERR_X509_UNKNOWN_SIG_ALG + MBEDTLS_ERR_OID_NOT_FOUND
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001360
Hanno Becker2389d162019-02-14 12:52:47 +00001361X509 CRT ASN1 (TBS, inv AlgID, param inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001362depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001363x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010b0685300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0685030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001364
Hanno Becker2389d162019-02-14 12:52:47 +00001365X509 CRT ASN1 (TBS, inv AlgID, param length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001366depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001367x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010b0601300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0601030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001368
Hanno Becker2389d162019-02-14 12:52:47 +00001369X509 CRT ASN1 (TBS, inv AlgID, param length mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001370depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001371x509parse_crt:"30819a308182a0030201008204deadbeef300f06092a864886f70d01010b06010000300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300f06092a864886f70d01010b06010000030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Hanno Beckera328fff2019-02-12 13:44:17 +00001372
Hanno Becker2389d162019-02-14 12:52:47 +00001373X509 CRT ASN1 (TBS, inv AlgID, params present but empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001374depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001375x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010b0600300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0600030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG
Hanno Beckera328fff2019-02-12 13:44:17 +00001376
Hanno Becker2389d162019-02-14 12:52:47 +00001377X509 CRT ASN1 (TBS, inv AlgID, bad RSASSA-PSS params)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001378depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_X509_RSASSA_PSS_SUPPORT
Hanno Becker764fbdf2019-06-04 16:04:36 +01001379x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010a3100300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010a3100030200ff":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02001380
Hanno Becker2389d162019-02-14 12:52:47 +00001381X509 CRT ASN1 (TBS, Issuer missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001382depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001383x509parse_crt:"302f301aa0030201008204deadbeef300d06092a864886f70d01010b0500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001384
Hanno Becker2389d162019-02-14 12:52:47 +00001385X509 CRT ASN1 (TBS, inv Issuer, RDNSequence inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001386depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001387x509parse_crt:"3031301ca0030201008204deadbeef300d06092a864886f70d01010b05000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001388
Hanno Becker2389d162019-02-14 12:52:47 +00001389X509 CRT ASN1 (TBS, inv Issuer, RDNSequence length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001390depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001391x509parse_crt:"3030301ba0030201008204deadbeef300d06092a864886f70d01010b050030300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001392
Hanno Becker2389d162019-02-14 12:52:47 +00001393X509 CRT ASN1 (TBS, inv Issuer, RDNSequence inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001394depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001395x509parse_crt:"3031301ca0030201008204deadbeef300d06092a864886f70d01010b05003085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001396
Hanno Becker2389d162019-02-14 12:52:47 +00001397X509 CRT ASN1 (TBS, inv Issuer, RDNSequence length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001398depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Hanno Becker764fbdf2019-06-04 16:04:36 +01001399x509parse_crt:"3031301ca0030201008204deadbeef300d06092a864886f70d01010b05003001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001400
Hanno Becker2389d162019-02-14 12:52:47 +00001401X509 CRT ASN1 (TBS, inv Issuer, RDNSequence empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001402depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001403x509parse_crt:"3081893074a0030201028204deadbeef300d06092a864886f70d01010b05003000301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001404
Hanno Becker2389d162019-02-14 12:52:47 +00001405X509 CRT ASN1 (TBS, inv Issuer, RDN inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001406depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001407x509parse_crt:"30818b3076a0030201028204deadbeef300d06092a864886f70d01010b050030020500301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001408
Hanno Becker2389d162019-02-14 12:52:47 +00001409X509 CRT ASN1 (TBS, inv Issuer, RDN inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001410depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001411x509parse_crt:"30818b3076a0030201028204deadbeef300d06092a864886f70d01010b050030023185301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001412
Hanno Becker2389d162019-02-14 12:52:47 +00001413X509 CRT ASN1 (TBS, inv Issuer, RDN length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001414depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001415x509parse_crt:"30818b3076a0030201028204deadbeef300d06092a864886f70d01010b050030023101301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001416
Hanno Becker2389d162019-02-14 12:52:47 +00001417X509 CRT ASN1 (TBS, inv Issuer, RDN empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001418depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001419x509parse_crt:"30818b3076a0030201028204deadbeef300d06092a864886f70d01010b050030023100301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001420
Hanno Becker2389d162019-02-14 12:52:47 +00001421X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001422depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001423x509parse_crt:"30818d3078a0030201028204deadbeef300d06092a864886f70d01010b0500300431020500301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001424
Hanno Becker2389d162019-02-14 12:52:47 +00001425X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001426depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001427x509parse_crt:"30818d3078a0030201028204deadbeef300d06092a864886f70d01010b0500300431023085301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001428
Hanno Becker2389d162019-02-14 12:52:47 +00001429X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001430depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001431x509parse_crt:"30818d3078a0030201028204deadbeef300d06092a864886f70d01010b0500300431023001301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker345fb492009-07-20 21:26:07 +00001432
Hanno Becker2389d162019-02-14 12:52:47 +00001433X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001434depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001435x509parse_crt:"30818d3078a0030201028204deadbeef300d06092a864886f70d01010b0500300431023000301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker345fb492009-07-20 21:26:07 +00001436
Hanno Becker2389d162019-02-14 12:52:47 +00001437X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue type inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001438depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001439x509parse_crt:"30818f307aa0030201028204deadbeef300d06092a864886f70d01010b05003006310430020500301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001440
Hanno Becker2389d162019-02-14 12:52:47 +00001441X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue type inv no length data)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001442depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001443x509parse_crt:"30818e3079a0030201028204deadbeef300d06092a864886f70d01010b050030053103300106301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001444
Hanno Becker2389d162019-02-14 12:52:47 +00001445X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue type inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001446depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001447x509parse_crt:"30818f307aa0030201028204deadbeef300d06092a864886f70d01010b05003006310430020685301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakker345fb492009-07-20 21:26:07 +00001448
Hanno Becker19db19e2019-03-13 10:36:47 +00001449X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue type length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001450depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001451x509parse_crt:"30818f307aa0030201028204deadbeef300d06092a864886f70d01010b05003006310430020601301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker345fb492009-07-20 21:26:07 +00001452
Hanno Becker2389d162019-02-14 12:52:47 +00001453X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue value missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001454depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001455x509parse_crt:"30818f307aa0030201028204deadbeef300d06092a864886f70d01010b05003006310430020600301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001456
Hanno Becker2389d162019-02-14 12:52:47 +00001457X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue value inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001458depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001459x509parse_crt:"308191307ca0030201028204deadbeef300d06092a864886f70d01010b050030083106300406000500301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG;
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001460
Hanno Becker2389d162019-02-14 12:52:47 +00001461X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue value length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001462depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001463x509parse_crt:"308190307ba0030201028204deadbeef300d06092a864886f70d01010b050030073105300306000c301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker345fb492009-07-20 21:26:07 +00001464
Hanno Becker2389d162019-02-14 12:52:47 +00001465X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue value inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001466depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001467x509parse_crt:"308191307ca0030201028204deadbeef300d06092a864886f70d01010b050030083106300406000C85301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001468
Hanno Becker2389d162019-02-14 12:52:47 +00001469X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue value length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001470depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001471x509parse_crt:"308191307ca0030201028204deadbeef300d06092a864886f70d01010b050030083106300406000c01301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001472
Hanno Becker2389d162019-02-14 12:52:47 +00001473X509 CRT ASN1 (TBS, inv Issuer, AttrTypeAndValue value length mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001474depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001475x509parse_crt:"308193307ea0030201028204deadbeef300d06092a864886f70d01010b0500300a3108300606000c010000301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001476
Hanno Becker2389d162019-02-14 12:52:47 +00001477X509 CRT ASN1 (TBS, inv Issuer, 2nd AttributeTypeValue empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001478depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5e2cf382019-02-12 15:49:08 +00001479x509parse_crt:"308198308182a0030201028204deadbeef300d06092a864886f70d01010b0500300e310c300806000c04546573743000301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001480
Hanno Becker2389d162019-02-14 12:52:47 +00001481X509 CRT ASN1 (TBS, Validity missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001482depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001483x509parse_crt:"303d3028a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c0454657374300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001484
Hanno Becker2389d162019-02-14 12:52:47 +00001485X509 CRT ASN1 (TBS, inv Validity, inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001486depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001487x509parse_crt:"303f302aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c04546573740500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakker345fb492009-07-20 21:26:07 +00001488
Hanno Becker2389d162019-02-14 12:52:47 +00001489X509 CRT ASN1 (TBS, inv Validity, length field missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001490depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001491x509parse_crt:"303e3029a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c045465737430300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001492
Hanno Becker2389d162019-02-14 12:52:47 +00001493X509 CRT ASN1 (TBS, inv Validity, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001494depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001495x509parse_crt:"303f302aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c04546573743085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakker345fb492009-07-20 21:26:07 +00001496
Hanno Becker2389d162019-02-14 12:52:47 +00001497X509 CRT ASN1 (TBS, inv Validity, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001498depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001499x509parse_crt:"303f302aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c04546573743001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001500
Hanno Becker2389d162019-02-14 12:52:47 +00001501X509 CRT ASN1 (TBS, inv Validity, notBefore missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001502depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001503x509parse_crt:"30793064a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c04546573743000300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001504
Hanno Becker2389d162019-02-14 12:52:47 +00001505X509 CRT ASN1 (TBS, inv Validity, notBefore inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001506depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001507x509parse_crt:"307b3066a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c045465737430020500300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001508
Hanno Becker2389d162019-02-14 12:52:47 +00001509X509 CRT ASN1 (TBS, inv Validity, notBefore no length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001510depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001511x509parse_crt:"307a3065a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c0454657374300117300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001512
Hanno Becker2389d162019-02-14 12:52:47 +00001513X509 CRT ASN1 (TBS, inv Validity, notBefore inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001514depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001515x509parse_crt:"307b3066a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c04546573743002178f300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001516
Hanno Becker2389d162019-02-14 12:52:47 +00001517X509 CRT ASN1 (TBS, inv Validity, notBefore length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001518depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001519x509parse_crt:"307b3066a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a300806000c045465737430021701300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker345fb492009-07-20 21:26:07 +00001520
Hanno Becker2389d162019-02-14 12:52:47 +00001521X509 CRT ASN1 (TBS, inv Validity, notBefore empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001522depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001523x509parse_crt:"3081893074a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a3008060013045465737430101700170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001524
Hanno Becker2389d162019-02-14 12:52:47 +00001525X509 CRT ASN1 (TBS, inv Validity, notBefore invalid)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001526depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001527x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303000000000170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001528
Hanno Becker2389d162019-02-14 12:52:47 +00001529X509 CRT ASN1 (TBS, inv Validity, notAfter missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001530depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001531x509parse_crt:"3081873072a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374300e170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkere4ff4132009-07-27 20:22:10 +00001532
Hanno Becker2389d162019-02-14 12:52:47 +00001533X509 CRT ASN1 (TBS, inv Validity, notAfter inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001534depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001535x509parse_crt:"3081893074a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a300806001304546573743010170c3039313233313233353935390500300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker18459d42019-02-13 11:22:23 +00001536
Hanno Becker2389d162019-02-14 12:52:47 +00001537X509 CRT ASN1 (TBS, inv Validity, notAfter length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001538depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001539x509parse_crt:"3081883073a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374300f170c30393132333132333539353917300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1540
Hanno Becker2389d162019-02-14 12:52:47 +00001541X509 CRT ASN1 (TBS, inv Validity, notAfter inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001542depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001543x509parse_crt:"3081893074a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a300806001304546573743010170c3039313233313233353935391785300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1544
Hanno Becker2389d162019-02-14 12:52:47 +00001545X509 CRT ASN1 (TBS, inv Validity, notAfter length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001546depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001547x509parse_crt:"3081893074a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a300806001304546573743010170c3039313233313233353935391701300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1548
Hanno Becker2389d162019-02-14 12:52:47 +00001549X509 CRT ASN1 (TBS, inv Validity, notAfter empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001550depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001551x509parse_crt:"3081893074a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a300806001304546573743010170c3039313233313233353935391700300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE
1552
Hanno Becker2389d162019-02-14 12:52:47 +00001553X509 CRT ASN1 (TBS, inv Validity, notAfter invalid)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001554depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001555x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303931323331323335393539170c303930313031303000000000300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE
1556
Hanno Becker7ca07e32019-03-13 10:14:00 +00001557X509 CRT ASN1 (TBS, inv Validity, data remaining after 'notAfter')
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001558depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker18459d42019-02-13 11:22:23 +00001559x509parse_crt:"308198308182a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301e170c303930313031303030303030170c3039313233313233353935391700300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001560
Hanno Becker2389d162019-02-14 12:52:47 +00001561X509 CRT ASN1 (TBS, Subject missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001562depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001563x509parse_crt:"305b3046a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1564
Hanno Becker2389d162019-02-14 12:52:47 +00001565X509 CRT ASN1 (TBS, inv Subject, RDNSequence inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001566depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001567x509parse_crt:"305c3047a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353900300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
1568
Hanno Becker2389d162019-02-14 12:52:47 +00001569X509 CRT ASN1 (TBS, inv Subject, RDNSequence length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001570depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001571x509parse_crt:"305c3047a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1572
Hanno Becker2389d162019-02-14 12:52:47 +00001573X509 CRT ASN1 (TBS, inv Subject, RDNSequence inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001574depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001575x509parse_crt:"305d3048a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c3039313233313233353935393085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1576
Hanno Becker2389d162019-02-14 12:52:47 +00001577X509 CRT ASN1 (TBS, inv Subject, RDNSequence length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001578depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001579x509parse_crt:"305d3048a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c3039313233313233353935393001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1580
Hanno Becker2389d162019-02-14 12:52:47 +00001581X509 CRT ASN1 (TBS, inv Subject, RDN inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001582depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001583x509parse_crt:"30818b3076a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930020500302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker28ae6b12019-02-13 11:59:00 +00001584
Hanno Becker2389d162019-02-14 12:52:47 +00001585X509 CRT ASN1 (TBS, inv Subject, RDN inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001586depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001587x509parse_crt:"30818b3076a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930023185302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1588
Hanno Becker2389d162019-02-14 12:52:47 +00001589X509 CRT ASN1 (TBS, inv Subject, RDN length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001590depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001591x509parse_crt:"30818b3076a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930023101302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1592
Hanno Becker2389d162019-02-14 12:52:47 +00001593X509 CRT ASN1 (TBS, inv Subject, RDN empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001594depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001595x509parse_crt:"30818b3076a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930023100302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1596
Hanno Becker2389d162019-02-14 12:52:47 +00001597X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001598depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001599x509parse_crt:"30818d3078a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300431020500302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker28ae6b12019-02-13 11:59:00 +00001600
Hanno Becker2389d162019-02-14 12:52:47 +00001601X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001602depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001603x509parse_crt:"30818d3078a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300431023085302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1604
Hanno Becker2389d162019-02-14 12:52:47 +00001605X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001606depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001607x509parse_crt:"30818d3078a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300431023001302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1608
Hanno Becker2389d162019-02-14 12:52:47 +00001609X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001610depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001611x509parse_crt:"30818d3078a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300431023000302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1612
Hanno Becker2389d162019-02-14 12:52:47 +00001613X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue type inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001614depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001615x509parse_crt:"30818f307aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c3039313233313233353935393006310430020500302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker28ae6b12019-02-13 11:59:00 +00001616
Hanno Becker2389d162019-02-14 12:52:47 +00001617X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue type inv no length data)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001618depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001619x509parse_crt:"30818e3079a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930053103300106302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1620
Hanno Becker2389d162019-02-14 12:52:47 +00001621X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue type inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001622depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001623x509parse_crt:"30818f307aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c3039313233313233353935393006310430020685302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1624
Hanno Becker2389d162019-02-14 12:52:47 +00001625X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue type length out of bounds )
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001626depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001627x509parse_crt:"30818f307aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c3039313233313233353935393006310430020601302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1628
Hanno Becker2389d162019-02-14 12:52:47 +00001629X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue value missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001630depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001631x509parse_crt:"30818f307aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c3039313233313233353935393006310430020600302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1632
Hanno Becker2389d162019-02-14 12:52:47 +00001633X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue value inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001634depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001635x509parse_crt:"308191307ca0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930083106300406000500302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG;
Hanno Becker28ae6b12019-02-13 11:59:00 +00001636
Hanno Becker2389d162019-02-14 12:52:47 +00001637X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue value length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001638depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001639x509parse_crt:"308190307ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930073105300306000c302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1640
Hanno Becker2389d162019-02-14 12:52:47 +00001641X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue value inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001642depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001643x509parse_crt:"308191307ca0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930083106300406000C85302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1644
Hanno Becker2389d162019-02-14 12:52:47 +00001645X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue value length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001646depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001647x509parse_crt:"308191307ca0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c30393132333132333539353930083106300406000c01302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1648
Hanno Becker2389d162019-02-14 12:52:47 +00001649X509 CRT ASN1 (TBS, inv Subject, AttrTypeAndValue value length mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001650depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001651x509parse_crt:"308193307ea0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300a3108300606000c010000302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
1652
Hanno Becker2389d162019-02-14 12:52:47 +00001653X509 CRT ASN1 (TBS, inv Subject, 2nd AttributeTypeValue empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001654depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker28ae6b12019-02-13 11:59:00 +00001655x509parse_crt:"308198308182a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300e310c300806000c04546573743000302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001656
Hanno Becker2389d162019-02-14 12:52:47 +00001657X509 CRT ASN1 (TBS, SubPubKeyInfo missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001658depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001659x509parse_crt:"30693054a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_KEY_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001660
Hanno Becker19db19e2019-03-13 10:36:47 +00001661X509 CRT ASN1 (TBS, inv SubPubKeyInfo, inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001662depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001663x509parse_crt:"306b3056a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573740500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_KEY_INVALID_FORMAT + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001664
Hanno Becker19db19e2019-03-13 10:36:47 +00001665X509 CRT ASN1 (TBS, inv SubPubKeyInfo, length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001666depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001667x509parse_crt:"306a3055a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a3008060013045465737430300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_KEY_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001668
Hanno Becker19db19e2019-03-13 10:36:47 +00001669X509 CRT ASN1 (TBS, inv SubPubKeyInfo, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001670depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001671x509parse_crt:"306b3056a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_KEY_INVALID_FORMAT + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001672
Hanno Becker19db19e2019-03-13 10:36:47 +00001673X509 CRT ASN1 (TBS, inv SubPubKeyInfo, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001674depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001675x509parse_crt:"306b3056a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_KEY_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001676
Hanno Becker19db19e2019-03-13 10:36:47 +00001677X509 CRT ASN1 (TBS, inv SubPubKeyInfo, empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001678depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001679x509parse_crt:"306b3056a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001680
Hanno Becker19db19e2019-03-13 10:36:47 +00001681X509 CRT ASN1 (TBS, inv SubPubKeyInfo, inv algorithm tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001682depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001683x509parse_crt:"306d3058a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a3008060013045465737430020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001684
Hanno Becker19db19e2019-03-13 10:36:47 +00001685X509 CRT ASN1 (TBS, inv SubPubKeyInfo, algorithm length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001686depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001687x509parse_crt:"306c3057a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374300130300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001688
Hanno Becker19db19e2019-03-13 10:36:47 +00001689X509 CRT ASN1 (TBS, inv SubPubKeyInfo, algorithm inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001690depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001691x509parse_crt:"306d3058a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a3008060013045465737430023085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_ALG + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001692
Hanno Becker19db19e2019-03-13 10:36:47 +00001693X509 CRT ASN1 (TBS, inv SubPubKeyInfo, algorithm length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001694depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001695x509parse_crt:"306d3058a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a3008060013045465737430023001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001696
Hanno Becker19db19e2019-03-13 10:36:47 +00001697X509 CRT ASN1 (TBS, inv SubPubKeyInfo, algorithm empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001698depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001699x509parse_crt:"3081883073a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374301d300003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001700
Hanno Becker19db19e2019-03-13 10:36:47 +00001701X509 CRT ASN1 (TBS, inv SubPubKeyInfo, algorithm unknown)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001702depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001703x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010100050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_UNKNOWN_PK_ALG
1704
Hanno Becker19db19e2019-03-13 10:36:47 +00001705X509 CRT ASN1 (TBS, inv SubPubKeyInfo, bitstring missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001706depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001707x509parse_crt:"307a3065a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374300f300d06092A864886F70D0101010500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1708
Hanno Becker19db19e2019-03-13 10:36:47 +00001709X509 CRT ASN1 (TBS, inv SubPubKeyInfo, bitstring inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001710depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001711x509parse_crt:"307c3067a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743011300d06092A864886F70D01010105000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Beckerbb955e52019-06-04 15:38:48 +01001712
Hanno Becker19db19e2019-03-13 10:36:47 +00001713X509 CRT ASN1 (TBS, inv SubPubKeyInfo, bitstring length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001714depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001715x509parse_crt:"307b3066a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743010300d06092A864886F70D010101050003300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1716
Hanno Becker19db19e2019-03-13 10:36:47 +00001717X509 CRT ASN1 (TBS, inv SubPubKeyInfo, bitstring inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001718depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001719x509parse_crt:"307c3067a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743011300d06092A864886F70D01010105000385300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1720
Hanno Becker19db19e2019-03-13 10:36:47 +00001721X509 CRT ASN1 (TBS, inv SubPubKeyInfo, bitstring length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001722depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001723x509parse_crt:"307c3067a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743011300d06092A864886F70D01010105000301300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1724
Hanno Becker19db19e2019-03-13 10:36:47 +00001725X509 CRT ASN1 (TBS, inv SubPubKeyInfo, no bitstring data)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001726depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001727x509parse_crt:"307c3067a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743011300d06092A864886F70D01010105000300300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_INVALID_DATA
1728
Hanno Becker19db19e2019-03-13 10:36:47 +00001729X509 CRT ASN1 (TBS, inv SubPubKeyInfo, inv bitstring start)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001730depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001731x509parse_crt:"307d3068a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743012300d06092A864886F70D0101010500030101300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_INVALID_DATA
1732
Hanno Becker2389d162019-02-14 12:52:47 +00001733X509 CRT ASN1 (TBS, inv SubPubKeyInfo, inv internal bitstring length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001734depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001735x509parse_crt:"308180306ba0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743015300d06092A864886F70D0101010500030400300000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
1736
Hanno Becker2389d162019-02-14 12:52:47 +00001737X509 CRT ASN1 (TBS, inv SubPubKeyInfo, inv internal bitstring tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001738depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001739x509parse_crt:"308180306ba0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a300806001304546573743015300d06092A864886F70D0101010500030400310000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
1740
Hanno Becker2389d162019-02-14 12:52:47 +00001741X509 CRT ASN1 (TBS, inv SubPubKeyInfo, inv RSA modulus)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001742depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001743x509parse_crt:"3081873072a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374301c300d06092A864886F70D0101010500030b0030080202ffff0302ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
1744
Hanno Becker2389d162019-02-14 12:52:47 +00001745X509 CRT ASN1 (TBS, inv SubPubKeyInfo, total length mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001746depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001747x509parse_crt:"3081893074a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374301e300d06092A864886F70D0101010500030b0030080202ffff0202ffff0500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
1748
Hanno Becker2389d162019-02-14 12:52:47 +00001749X509 CRT ASN1 (TBS, inv SubPubKeyInfo, check failed)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001750depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001751x509parse_crt:"3081873072a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374301c300d06092A864886F70D0101010500030b0030080202ffff0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY
1752
Hanno Becker2389d162019-02-14 12:52:47 +00001753X509 CRT ASN1 (TBS, inv SubPubKeyInfo, check failed, expanded length notation)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001754depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbb955e52019-06-04 15:38:48 +01001755x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210fffffffffffffffffffffffffffffffe0202ffff300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_PK_INVALID_PUBKEY
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001756
Hanno Becker61cf9e32019-06-13 13:32:44 +01001757# We expect an extension parsing error here because the IssuerID is optional.
1758# Hence, if we find an ASN.1 tag doesn't match the IssuerID, we assume the
1759# IssuerID is skipped and that the tag should hence belong to the next field,
1760# namely the v3 extensions. However, the tag the test exercises is a NULL tag,
1761# and hence we obtain an INVALID_TAG error during extension parsing.
Hanno Becker2389d162019-02-14 12:52:47 +00001762X509 CRT ASN1 (TBS, inv IssuerID, inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001763depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001764x509parse_crt:"308198308182a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff0500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001765
Hanno Becker2389d162019-02-14 12:52:47 +00001766X509 CRT ASN1 (TBS, inv IssuerID, length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001767depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker9f06b502019-06-04 15:43:15 +01001768x509parse_crt:"308197308181a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa1300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001769
Hanno Becker2389d162019-02-14 12:52:47 +00001770X509 CRT ASN1 (TBS, inv IssuerID, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001771depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker9f06b502019-06-04 15:43:15 +01001772x509parse_crt:"308198308182a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa185300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001773
Hanno Becker2389d162019-02-14 12:52:47 +00001774X509 CRT ASN1 (TBS, inv IssuerID, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001775depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker9f06b502019-06-04 15:43:15 +01001776x509parse_crt:"308198308182a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa101300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerc26a1892009-07-19 20:30:14 +00001777
Hanno Becker2389d162019-02-14 12:52:47 +00001778X509 CRT ASN1 (TBS, no IssuerID, inv SubjectID, length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001779depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker9f06b502019-06-04 15:43:15 +01001780x509parse_crt:"308197308181a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa2300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerc26a1892009-07-19 20:30:14 +00001781
Hanno Becker2389d162019-02-14 12:52:47 +00001782X509 CRT ASN1 (TBS, no IssuerID, inv SubjectID, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001783depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker9f06b502019-06-04 15:43:15 +01001784x509parse_crt:"308198308182a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa285300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001785
Hanno Becker2389d162019-02-14 12:52:47 +00001786X509 CRT ASN1 (TBS, no IssuerID, inv SubjectID, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001787depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbe3850a2019-06-04 15:45:45 +01001788x509parse_crt:"308198308182a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa201300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001789
Hanno Becker2389d162019-02-14 12:52:47 +00001790X509 CRT ASN1 (TBS, valid IssuerID, inv SubjectID, inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001791depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001792x509parse_crt:"30819a308184a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa1000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakkere4ff4132009-07-27 20:22:10 +00001793
Hanno Becker2389d162019-02-14 12:52:47 +00001794X509 CRT ASN1 (TBS, valid IssuerID, inv SubjectID, length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001795depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbe3850a2019-06-04 15:45:45 +01001796x509parse_crt:"308199308183a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a2300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerc6ce8382009-07-27 21:34:45 +00001797
Hanno Becker2389d162019-02-14 12:52:47 +00001798X509 CRT ASN1 (TBS, valid IssuerID, inv SubjectID, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001799depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbe3850a2019-06-04 15:45:45 +01001800x509parse_crt:"30819a308184a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a285300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerc6ce8382009-07-27 21:34:45 +00001801
Hanno Becker2389d162019-02-14 12:52:47 +00001802X509 CRT ASN1 (TBS, valid IssuerID, inv SubjectID, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001803depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerbe3850a2019-06-04 15:45:45 +01001804x509parse_crt:"30819a308184a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a201300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkere4ff4132009-07-27 20:22:10 +00001805
Hanno Beckerd51d4852019-03-13 15:18:57 +00001806X509 CRT ASN1 (TBS, IssuerID unsupported in v1 CRT)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001807depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerd51d4852019-03-13 15:18:57 +00001808x509parse_crt:"30819a308184a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a201300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakkere4ff4132009-07-27 20:22:10 +00001809
Hanno Beckerd51d4852019-03-13 15:18:57 +00001810X509 CRT ASN1 (TBS, SubjectID unsupported in v1 CRT)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001811depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerd51d4852019-03-13 15:18:57 +00001812x509parse_crt:"30819a308184a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa200a201300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakkere4ff4132009-07-27 20:22:10 +00001813
Hanno Becker2389d162019-02-14 12:52:47 +00001814X509 CRT ASN1 (TBS, inv v3Ext, inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001815depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001816x509parse_crt:"30819c308186a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a2000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkere4ff4132009-07-27 20:22:10 +00001817
Hanno Becker2389d162019-02-14 12:52:47 +00001818X509 CRT ASN1 (TBS, inv v3Ext, outer length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001819depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001820x509parse_crt:"30819b308185a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001821
Hanno Becker2389d162019-02-14 12:52:47 +00001822X509 CRT ASN1 (TBS, inv v3Ext, outer length inv encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001823depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001824x509parse_crt:"30819c308186a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a385300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001825
Hanno Becker2389d162019-02-14 12:52:47 +00001826X509 CRT ASN1 (TBS, inv v3Ext, outer length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001827depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001828x509parse_crt:"30819c308186a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a301300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001829
Hanno Becker2389d162019-02-14 12:52:47 +00001830X509 CRT ASN1 (TBS, inv v3Ext, outer length 0)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001831depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001832x509parse_crt:"30819c308186a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a300300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001833
Hanno Becker2389d162019-02-14 12:52:47 +00001834X509 CRT ASN1 (TBS, inv v3Ext, inner tag invalid)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001835depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001836x509parse_crt:"30819e308188a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00001837
Hanno Becker2389d162019-02-14 12:52:47 +00001838X509 CRT ASN1 (TBS, inv v3Ext, inner length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001839depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001840x509parse_crt:"30819d308187a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30130300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1841
Hanno Becker2389d162019-02-14 12:52:47 +00001842X509 CRT ASN1 (TBS, inv v3Ext, inner length inv encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001843depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001844x509parse_crt:"30819e308188a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3023085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1845
Hanno Becker2389d162019-02-14 12:52:47 +00001846X509 CRT ASN1 (TBS, inv v3Ext, inner length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001847depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001848x509parse_crt:"30819e308188a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3023001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1849
Hanno Becker2389d162019-02-14 12:52:47 +00001850X509 CRT ASN1 (TBS, inv v3Ext, inner/outer length mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001851depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001852x509parse_crt:"30819f308189a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a303300000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
1853
Hanno Becker2389d162019-02-14 12:52:47 +00001854X509 CRT ASN1 (TBS, inv v3Ext, first ext inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001855depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001856x509parse_crt:"3081a030818aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30430020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker05987e32019-06-04 15:51:22 +01001857
Hanno Becker2389d162019-02-14 12:52:47 +00001858X509 CRT ASN1 (TBS, inv v3Ext, first ext length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001859depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001860x509parse_crt:"30819f308189a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a303300130300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1861
Hanno Becker2389d162019-02-14 12:52:47 +00001862X509 CRT ASN1 (TBS, inv v3Ext, inv first ext length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001863depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001864x509parse_crt:"3081a030818aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30430023085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1865
Hanno Becker2389d162019-02-14 12:52:47 +00001866X509 CRT ASN1 (TBS, inv v3Ext, first ext length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001867depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001868x509parse_crt:"3081a030818aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30430023001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1869
Hanno Becker2389d162019-02-14 12:52:47 +00001870X509 CRT ASN1 (TBS, inv v3Ext, first ext empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001871depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001872x509parse_crt:"3081a030818aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30430023000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1873
Hanno Becker2389d162019-02-14 12:52:47 +00001874X509 CRT ASN1 (TBS, inv v3Ext, first ext extnID inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001875depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001876x509parse_crt:"3081a230818ca0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a306300430020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker05987e32019-06-04 15:51:22 +01001877
Hanno Becker2389d162019-02-14 12:52:47 +00001878X509 CRT ASN1 (TBS, inv v3Ext, first ext extnID length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001879depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001880x509parse_crt:"3081a130818ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3053003300106300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1881
Hanno Becker2389d162019-02-14 12:52:47 +00001882X509 CRT ASN1 (TBS, inv v3Ext, first ext extnID inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001883depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001884x509parse_crt:"3081a230818ca0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a306300430020685300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1885
Hanno Becker2389d162019-02-14 12:52:47 +00001886X509 CRT ASN1 (TBS, inv v3Ext, first ext extnID length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001887depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001888x509parse_crt:"3081a230818ca0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a306300430020601300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1889
Hanno Becker2389d162019-02-14 12:52:47 +00001890X509 CRT ASN1 (TBS, inv v3Ext, no extnValue)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001891depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001892x509parse_crt:"3081a230818ca0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a306300430020600300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1893
Hanno Becker2389d162019-02-14 12:52:47 +00001894X509 CRT ASN1 (TBS, inv v3Ext, inv critical tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001895depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001896x509parse_crt:"3081a430818ea0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3083006300406000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker05987e32019-06-04 15:51:22 +01001897
Hanno Becker2389d162019-02-14 12:52:47 +00001898X509 CRT ASN1 (TBS, inv v3Ext, critical length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001899depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001900x509parse_crt:"3081a330818da0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30730053003060001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1901
Hanno Becker2389d162019-02-14 12:52:47 +00001902X509 CRT ASN1 (TBS, inv v3Ext, critical inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001903depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001904x509parse_crt:"3081a430818ea0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3083006300406000185300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1905
Hanno Becker2389d162019-02-14 12:52:47 +00001906X509 CRT ASN1 (TBS, inv v3Ext, critical length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001907depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001908x509parse_crt:"3081a430818ea0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3083006300406000101300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1909
Hanno Becker2389d162019-02-14 12:52:47 +00001910X509 CRT ASN1 (TBS, inv v3Ext, critical length 0)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001911depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001912x509parse_crt:"3081a430818ea0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3083006300406000100300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1913
Hanno Becker2389d162019-02-14 12:52:47 +00001914X509 CRT ASN1 (TBS, inv v3Ext, critical length 2)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001915depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001916x509parse_crt:"3081a6308190a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30a30083006060001020000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1917
Hanno Becker2389d162019-02-14 12:52:47 +00001918X509 CRT ASN1 (TBS, inv v3Ext, extnValue inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001919depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01001920x509parse_crt:"3081a7308191a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30b3009300706000101000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker05987e32019-06-04 15:51:22 +01001921
Hanno Becker2389d162019-02-14 12:52:47 +00001922X509 CRT ASN1 (TBS, inv v3Ext, extnValue length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001923depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001924x509parse_crt:"3081a6308190a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30a30083006060001010004300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1925
Hanno Becker2389d162019-02-14 12:52:47 +00001926X509 CRT ASN1 (TBS, inv v3Ext, extnValue length inv encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001927depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001928x509parse_crt:"3081a7308191a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30b3009300706000101000485300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1929
Hanno Becker2389d162019-02-14 12:52:47 +00001930X509 CRT ASN1 (TBS, inv v3Ext, extnValue length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001931depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001932x509parse_crt:"3081a7308191a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30b3009300706000101000401300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1933
Hanno Becker8671e812019-03-14 08:22:51 +00001934X509 CRT ASN1 (TBS, inv v3Ext, data remaining after extnValue)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001935depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01001936x509parse_crt:"3081a9308193a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30d300b3009060001010004000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
1937
Hanno Becker7b8330a2019-09-12 14:06:33 +01001938X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, data missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001939depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerc15ff982019-09-12 14:21:57 +01001940x509parse_crt:"3081a7308191a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30b300930070603551d200400300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Hanno Becker7b8330a2019-09-12 14:06:33 +01001941
Hanno Becker6dfa6652019-09-12 16:03:08 +01001942X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, invalid outer tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001943depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001944x509parse_crt:"3081a9308193a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30d300b30090603551d2004020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker7b8330a2019-09-12 14:06:33 +01001945
Hanno Becker6dfa6652019-09-12 16:03:08 +01001946X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, outer length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001947depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001948x509parse_crt:"3081a8308192a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30c300a30080603551d20040130300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1949
1950X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, outer length inv encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001951depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001952x509parse_crt:"3081a9308193a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30d300b30090603551d2004023085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1953
1954X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, outer length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001955depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001956x509parse_crt:"3081a9308193a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30d300b30090603551d2004023001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1957
1958X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, no policies)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001959depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001960x509parse_crt:"3081a9308193a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30d300b30090603551d2004023000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
1961
1962X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy invalid tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001963depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001964x509parse_crt:"3081ab308195a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30f300d300b0603551d20040430020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
1965
1966X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001967depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001968x509parse_crt:"3081aa308194a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30e300c300a0603551d200403300130300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1969
1970X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy length inv encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001971depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001972x509parse_crt:"3081ab308195a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30f300d300b0603551d20040430023085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1973
1974X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001975depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001976x509parse_crt:"3081ab308195a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30f300d300b0603551d20040430023001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1977
1978X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, empty policy)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001979depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001980x509parse_crt:"3081ab308195a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30f300d300b0603551d20040430023000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1981
1982X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy invalid OID tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001983depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001984x509parse_crt:"3081ad308197a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a311300f300d0603551d200406300430020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
1985
1986X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy no OID length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001987depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001988x509parse_crt:"3081ac308196a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a310300e300c0603551d2004053003300106300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1989
1990X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy OID length inv encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001991depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001992x509parse_crt:"3081ad308197a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a311300f300d0603551d200406300430020685300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
1993
1994X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy OID length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001995depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01001996x509parse_crt:"3081ad308197a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a311300f300d0603551d200406300430020601300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
1997
1998X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, unknown critical policy)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01001999depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01002000x509parse_crt:"3081b130819ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a315301330110603551d20010101040730053003060100300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_FEATURE_UNAVAILABLE
2001
2002X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy qualifier invalid tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002003depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01002004x509parse_crt:"3081b030819aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a314301230100603551d200409300730050601000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2005
2006X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy qualifier no length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002007depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01002008x509parse_crt:"3081af308199a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3133011300f0603551d2004083006300406010030300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2009
2010X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy qualifier inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002011depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01002012x509parse_crt:"3081b030819aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a314301230100603551d200409300730050601003085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2013
2014X509 CRT ASN1 (TBSCertificate v3, inv CertificatePolicies, policy qualifier length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002015depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker6dfa6652019-09-12 16:03:08 +01002016x509parse_crt:"3081b030819aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a314301230100603551d200409300730050601003001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Hanno Becker7b8330a2019-09-12 14:06:33 +01002017
Hanno Becker2389d162019-02-14 12:52:47 +00002018X509 CRT ASN1 (TBS, inv extBasicConstraint, no pathlen length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002019depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002020x509parse_crt:"3081b030819aa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a314301230100603551d130101010406300402010102300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2021
Andrzej Kurek16050742020-04-14 09:49:52 -04002022X509 CRT ASN1 (inv extBasicConstraint, pathlen is INT_MAX)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002023depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Gilles Peskine1e5fec62023-04-13 18:13:48 +02002024mbedtls_x509_crt_parse_file:"data_files/server1_pathlen_int_max.crt":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH:0
Andrzej Kurek16050742020-04-14 09:49:52 -04002025
2026X509 CRT ASN1 (pathlen is INT_MAX-1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002027depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_MD_CAN_SHA1
Gilles Peskine1e5fec62023-04-13 18:13:48 +02002028mbedtls_x509_crt_parse_file:"data_files/server1_pathlen_int_max-1.crt":0:1
Andrzej Kurek16050742020-04-14 09:49:52 -04002029
Hanno Becker2389d162019-02-14 12:52:47 +00002030X509 CRT ASN1 (TBS, inv extBasicConstraint, pathlen inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002031depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002032x509parse_crt:"3081b130819ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a315301330110603551d13010101040730050201010285300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2033
Hanno Becker2389d162019-02-14 12:52:47 +00002034X509 CRT ASN1 (TBS, inv extBasicConstraint, pathlen length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002035depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002036x509parse_crt:"3081b130819ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a315301330110603551d13010101040730050201010201300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2037
Hanno Becker2389d162019-02-14 12:52:47 +00002038X509 CRT ASN1 (TBS, inv extBasicConstraint, pathlen empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002039depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002040x509parse_crt:"3081b130819ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a315301330110603551d13010101040730050201010200300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2041
Hanno Becker2389d162019-02-14 12:52:47 +00002042X509 CRT ASN1 (TBS, inv extBasicConstraint, pathlen length mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002043depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002044x509parse_crt:"3081b430819ea0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a318301630140603551d13010101040a30080201010201010500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2045
Hanno Becker2389d162019-02-14 12:52:47 +00002046X509 CRT ASN1 (TBS, inv v3Ext, ExtKeyUsage bad second tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002047depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002048x509parse_crt:"3081bd3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d250416301406082b0601050507030107082b06010505070302300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2049
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002050X509 CRT ASN1 (TBS, inv SubjectAltName, empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002051depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002052x509parse_crt:"3081a7308191a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30b300930070603551d110400300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2053
2054X509 CRT ASN1 (TBS, inv SubjectAltName, inv tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002055depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002056x509parse_crt:"3081a9308193a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30d300b30090603551d1104020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2057
2058X509 CRT ASN1 (TBS, inv SubjectAltName, length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002059depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002060x509parse_crt:"3081a8308192a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30c300a30080603551d11040130300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2061
2062X509 CRT ASN1 (TBS, inv SubjectAltName, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002063depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002064x509parse_crt:"3081a9308193a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30d300b30090603551d1104023085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2065
2066X509 CRT ASN1 (TBS, inv SubjectAltName, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002067depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002068x509parse_crt:"3081a9308193a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30d300b30090603551d1104023001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2069
2070X509 CRT ASN1 (TBS, inv SubjectAltName, data remaining after name SEQUENCE)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002071depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002072x509parse_crt:"3081aa308194a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30e300c300a0603551d110403300000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2073
2074X509 CRT ASN1 (TBS, inv SubjectAltName, name component length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002075depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002076x509parse_crt:"3081aa308194a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30e300c300a0603551d110403300180300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2077
2078X509 CRT ASN1 (TBS, inv SubjectAltName, name component inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002079depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002080x509parse_crt:"3081ab308195a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30f300d300b0603551d11040430028085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2081
2082X509 CRT ASN1 (TBS, inv SubjectAltName, name component length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002083depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002084x509parse_crt:"3081ab308195a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30f300d300b0603551d11040430028001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2085
2086X509 CRT ASN1 (TBS, inv SubjectAltName, name component unexpected tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002087depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002088x509parse_crt:"3081ab308195a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30f300d300b0603551d11040430024000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2089
2090X509 CRT ASN1 (TBS, inv SubjectAltName, otherName component empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002091depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002092x509parse_crt:"3081ab308195a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a30f300d300b0603551d1104043002a000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2093
2094X509 CRT ASN1 (TBS, inv SubjectAltName, otherName invalid OID tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002095depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002096x509parse_crt:"3081ad308197a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a311300f300d0603551d1104063004a0020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2097
2098X509 CRT ASN1 (TBS, inv SubjectAltName, otherName OID length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002099depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002100x509parse_crt:"3081ac308196a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a310300e300c0603551d1104053003a00106300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2101
2102X509 CRT ASN1 (TBS, inv SubjectAltName, otherName OID inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002103depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002104x509parse_crt:"3081ad308197a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a311300f300d0603551d1104063004a0020685300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2105
2106X509 CRT ASN1 (TBS, inv SubjectAltName, otherName OID length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002107depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002108x509parse_crt:"3081ad308197a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a311300f300d0603551d1104063004a0020601300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2109
2110X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName EXPLICIT tag missing
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002111depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002112x509parse_crt:"3081b530819fa0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a319301730150603551d11040e300ca00a06082b06010505070804300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2113
2114X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName unexpected EXPLICIT tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002115depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002116x509parse_crt:"3081b73081a1a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31b301930170603551d110410300ea00c06082b060105050708040500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2117
2118X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName outer length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002119depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002120x509parse_crt:"3081b63081a0a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31a301830160603551d11040f300da00b06082b06010505070804a0300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2121
2122X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName inv outer length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002123depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002124x509parse_crt:"3081b73081a1a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31b301930170603551d110410300ea00c06082b06010505070804a085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2125
2126X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName outer length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002127depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002128x509parse_crt:"3081b73081a1a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31b301930170603551d110410300ea00c06082b06010505070804a001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2129
2130X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName outer length 0)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002131depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002132x509parse_crt:"3081b73081a1a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31b301930170603551d110410300ea00c06082b06010505070804a000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2133
2134X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName inner tag invalid)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002135depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002136x509parse_crt:"3081b93081a3a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31d301b30190603551d1104123010a00e06082b06010505070804a0020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2137
2138X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName inner length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002139depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002140x509parse_crt:"3081b83081a2a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31c301a30180603551d110411300fa00d06082b06010505070804a00130300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2141
2142X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName inner length inv encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002143depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002144x509parse_crt:"3081b93081a3a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31d301b30190603551d1104123010a00e06082b06010505070804a0023085300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2145
2146X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName inner length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002147depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002148x509parse_crt:"3081b93081a3a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31d301b30190603551d1104123010a00e06082b06010505070804a0023001300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2149
2150X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName empty)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002151depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002152x509parse_crt:"3081b93081a3a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31d301b30190603551d1104123010a00e06082b06010505070804a0023000300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2153
2154X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName unexpected OID tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002155depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002156x509parse_crt:"3081bb3081a5a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31f301d301b0603551d1104143012a01006082b06010505070804a00430020500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2157
2158X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName OID no length)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002159depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002160x509parse_crt:"3081ba3081a4a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31e301c301a0603551d1104133011a00f06082b06010505070804a003300106300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2161
2162X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName OID inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002163depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002164x509parse_crt:"3081bb3081a5a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31f301d301b0603551d1104143012a01006082b06010505070804a00430020685300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2165
2166X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName OID length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002167depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002168x509parse_crt:"3081bb3081a5a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31f301d301b0603551d1104143012a01006082b06010505070804a00430020601300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2169
2170X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName data missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002171depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002172x509parse_crt:"3081bb3081a5a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a31f301d301b0603551d1104143012a01006082b06010505070804a00430020600300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2173
2174X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName data invalid tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002175depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002176x509parse_crt:"3081bd3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d1104163014a01206082b06010505070804a006300406000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2177
2178X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName data length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002179depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002180x509parse_crt:"3081bc3081a6a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a320301e301c0603551d1104153013a01106082b06010505070804a0053003060004300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2181
2182X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName data inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002183depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002184x509parse_crt:"3081bd3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d1104163014a01206082b06010505070804a006300406000485300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2185
2186X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName data length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002187depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002188x509parse_crt:"3081bd3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d1104163014a01206082b06010505070804a006300406000401300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2189
2190X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName data remaining #1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002191depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002192x509parse_crt:"3081bf3081a9a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3233021301f0603551d1104183016a01406082b06010505070804a0083006060004000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2193
2194X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName data remaining #2)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002195depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002196x509parse_crt:"3081bf3081a9a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3233021301f0603551d1104183016a01406082b06010505070804a0083004060004000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2197
2198X509 CRT ASN1 (TBS, inv SubjectAltName, HWModuleName data remaining #3)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002199depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5d82c3b2019-09-13 12:26:04 +01002200x509parse_crt:"3081bf3081a9a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a3233021301f0603551d1104183016a01406082b06010505070804a0063004060004000500300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Hanno Beckerdb305ff2019-09-13 12:26:04 +01002201
Hanno Becker2389d162019-02-14 12:52:47 +00002202X509 CRT ASN1 (TBS, inv v3Ext, SubjectAltName repeated)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002203depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002204x509parse_crt:"3081dc3081c6a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a340303e301d0603551d11041630148208666f6f2e7465737482086261722e74657374301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS
2205
Hanno Becker2389d162019-02-14 12:52:47 +00002206X509 CRT ASN1 (TBS, inv v3Ext, ExtKeyUsage repeated)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002207depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002208x509parse_crt:"3081dc3081c6a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a340303e301d0603551d250416301406082b0601050507030106082b06010505070302301d0603551d250416301406082b0601050507030106082b06010505070302300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS
2209
Hanno Becker2389d162019-02-14 12:52:47 +00002210X509 CRT ASN1 (TBS, inv v3Ext, SubjectAltName repeated outside Extensions)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002211depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker05987e32019-06-04 15:51:22 +01002212x509parse_crt:"3081dc3081c6a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2213
Gilles Peskine6710e152020-04-12 14:21:30 +02002214X509 CRT (TBS, valid v3Ext in v3 CRT)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002215depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Gilles Peskine6710e152020-04-12 14:21:30 +02002216x509parse_crt:"3081b93081a3a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030200ff":"cert. version \: 3\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ??=Test\nsubject name \: ??=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\nsubject alt name \:\n dNSName \: foo.test\n dNSName \: bar.test\n":0
2217
2218X509 CRT ASN1 (TBS, valid v3Ext in v1 CRT)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002219depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker04b10c02019-03-13 15:19:28 +00002220x509parse_crt:"3081b93081a3a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2221
2222X509 CRT ASN1 (TBS, valid v3Ext in v2 CRT)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002223depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker04b10c02019-03-13 15:19:28 +00002224x509parse_crt:"3081b93081a3a0030201018204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2225
Hanno Becker2389d162019-02-14 12:52:47 +00002226X509 CRT ASN1 (TBS, valid SubjectID, valid IssuerID, inv v3Ext, SubjectAltName repeated outside Extensions, inv SubjectAltNames tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002227depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Hanno Becker05987e32019-06-04 15:51:22 +01002228x509parse_crt:"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":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2229
Hanno Becker2389d162019-02-14 12:52:47 +00002230X509 CRT ASN1 (SignatureAlgorithm missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002231depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5f88a772019-06-04 15:54:43 +01002232x509parse_crt:"3081aa3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00002233
Hanno Becker2389d162019-02-14 12:52:47 +00002234X509 CRT ASN1 (inv SignatureAlgorithm, bad tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002235depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01002236x509parse_crt:"3081ac3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e746573740500":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakkerb2c38f52009-07-19 19:36:15 +00002237
Hanno Becker2389d162019-02-14 12:52:47 +00002238X509 CRT ASN1 (inv SignatureAlgorithm, length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002239depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5f88a772019-06-04 15:54:43 +01002240x509parse_crt:"3081ab3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e7465737430":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkerb2c38f52009-07-19 19:36:15 +00002241
Hanno Becker2389d162019-02-14 12:52:47 +00002242X509 CRT ASN1 (inv SignatureAlgorithm, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002243depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5f88a772019-06-04 15:54:43 +01002244x509parse_crt:"3081ac3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e746573743085":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_INVALID_LENGTH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00002245
Hanno Becker2389d162019-02-14 12:52:47 +00002246X509 CRT ASN1 (inv SignatureAlgorithm, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002247depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5f88a772019-06-04 15:54:43 +01002248x509parse_crt:"3081ac3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e746573743001":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2249
Hanno Becker2389d162019-02-14 12:52:47 +00002250X509 CRT ASN1 (inv SignatureAlgorithm, not the same as SignatureAlgorithm in TBS)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002251depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker5f88a772019-06-04 15:54:43 +01002252x509parse_crt:"3081bd3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010a0500030200ff":"":MBEDTLS_ERR_X509_SIG_MISMATCH
Paul Bakkerb2c38f52009-07-19 19:36:15 +00002253
Hanno Becker2389d162019-02-14 12:52:47 +00002254X509 CRT ASN1 (Signature missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002255depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker44199b62019-02-14 12:25:03 +00002256x509parse_crt:"3081b93081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2257
Hanno Becker2389d162019-02-14 12:52:47 +00002258X509 CRT ASN1 (inv Signature, bad tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002259depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker0f5acc12019-06-04 16:13:23 +01002260x509parse_crt:"3081bb3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b05000500":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Hanno Becker44199b62019-02-14 12:25:03 +00002261
Hanno Becker2389d162019-02-14 12:52:47 +00002262X509 CRT ASN1 (inv Signature, length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002263depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker44199b62019-02-14 12:25:03 +00002264x509parse_crt:"3081ba3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b050003":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2265
Hanno Becker2389d162019-02-14 12:52:47 +00002266X509 CRT ASN1 (inv Signature, inv length encoding)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002267depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker44199b62019-02-14 12:25:03 +00002268x509parse_crt:"3081bb3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b05000385":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2269
Hanno Becker2389d162019-02-14 12:52:47 +00002270X509 CRT ASN1 (inv Signature, length out of bounds)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002271depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker44199b62019-02-14 12:25:03 +00002272x509parse_crt:"3081bb3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b05000301":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2273
Gilles Peskine2dedcc52019-09-11 17:23:07 +02002274X509 CRT ASN1 (inv Signature, inv data #1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002275depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Gilles Peskine2dedcc52019-09-11 17:23:07 +02002276# signature = bit string with invalid encoding (missing number of unused bits)
Hanno Becker44199b62019-02-14 12:25:03 +00002277x509parse_crt:"3081bb3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b05000300":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_INVALID_DATA
2278
Gilles Peskine2dedcc52019-09-11 17:23:07 +02002279X509 CRT ASN1 (inv Signature, inv data #2)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002280depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Gilles Peskine2dedcc52019-09-11 17:23:07 +02002281# signature = bit string with invalid encoding (number of unused bits too large)
2282x509parse_crt:"3081bc3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030108":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_INVALID_DATA
2283
Gilles Peskinef70d3eb2019-10-04 19:24:06 +02002284X509 CRT ASN1 (empty Signature)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002285depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Gilles Peskinef70d3eb2019-10-04 19:24:06 +02002286# signature = empty bit string in DER encoding
2287x509parse_crt:"3081bc3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030100":"cert. version \: 3\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ??=Test\nsubject name \: ??=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\nsubject alt name \:\n dNSName \: foo.test\n dNSName \: bar.test\n":0
Gilles Peskine2dedcc52019-09-11 17:23:07 +02002288
2289X509 CRT ASN1 (dummy 24-bit Signature)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002290depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Gilles Peskine2dedcc52019-09-11 17:23:07 +02002291# signature = bit string "011001100110111101101111"
2292x509parse_crt:"3081bf3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030400666f6f":"cert. version \: 3\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ??=Test\nsubject name \: ??=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\nsubject alt name \:\n dNSName \: foo.test\n dNSName \: bar.test\n":0
2293
2294# The ASN.1 module rejects non-octet-aligned bit strings.
2295X509 CRT ASN1 (inv Signature: not octet-aligned)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002296depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Gilles Peskine2dedcc52019-09-11 17:23:07 +02002297# signature = bit string "01100110011011110110111"
2298x509parse_crt:"3081bf3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030401666f6e":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_INVALID_DATA
Hanno Becker44199b62019-02-14 12:25:03 +00002299
Hanno Becker2389d162019-02-14 12:52:47 +00002300X509 CRT ASN1 (inv Signature, length mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002301depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker44199b62019-02-14 12:25:03 +00002302x509parse_crt:"3081be3081a7a0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a321301f301d0603551d11041630148208666f6f2e7465737482086261722e74657374300d06092a864886f70d01010b0500030200ff00":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2303
Hanno Becker2389d162019-02-14 12:52:47 +00002304X509 CRT ASN1 (well-formed)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002305depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002306x509parse_crt:"308196308180a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ?\?=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerb2c38f52009-07-19 19:36:15 +00002307
Hanno Becker8671e812019-03-14 08:22:51 +00002308X509 CRT ASN1 (GeneralizedTime in notBefore, UTCTime in notAfter)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002309depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002310x509parse_crt:"308198308182a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301e180e3230313030313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ?\?=Test\nsubject name \: ?\?=Test\nissued on \: 2010-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakker91200182010-02-18 21:26:15 +00002311
Hanno Becker7717c412019-03-14 08:28:42 +00002312X509 CRT ASN1 (UTCTime in notBefore, GeneralizedTime in notAfter)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002313depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker7717c412019-03-14 08:28:42 +00002314x509parse_crt:"308198308182a0030201008204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301e170c303931323331323335393539180e3230313030313031303030303030300c310a30080600130454657374302a300d06092A864886F70D010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ?\?=Test\nsubject name \: ?\?=Test\nissued on \: 2009-12-31 23\:59\:59\nexpires on \: 2010-01-01 00\:00\:00\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
2315
Hanno Becker2389d162019-02-14 12:52:47 +00002316X509 CRT ASN1 (Name with X520 CN)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002317depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002318x509parse_crt:"308199308183a0030201008204deadbeef300d06092a864886f70d01010b0500300f310d300b0603550403130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: CN=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002319
Hanno Becker2389d162019-02-14 12:52:47 +00002320X509 CRT ASN1 (Name with X520 C)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002321depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002322x509parse_crt:"308199308183a0030201008204deadbeef300d06092a864886f70d01010b0500300f310d300b0603550406130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: C=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002323
Hanno Becker2389d162019-02-14 12:52:47 +00002324X509 CRT ASN1 (Name with X520 L)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002325depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002326x509parse_crt:"308199308183a0030201008204deadbeef300d06092a864886f70d01010b0500300f310d300b0603550407130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: L=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002327
Hanno Becker2389d162019-02-14 12:52:47 +00002328X509 CRT ASN1 (Name with X520 ST)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002329depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002330x509parse_crt:"308199308183a0030201008204deadbeef300d06092a864886f70d01010b0500300f310d300b0603550408130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ST=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002331
Hanno Becker2389d162019-02-14 12:52:47 +00002332X509 CRT ASN1 (Name with X520 O)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002333depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002334x509parse_crt:"308199308183a0030201008204deadbeef300d06092a864886f70d01010b0500300f310d300b060355040a130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: O=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002335
Hanno Becker2389d162019-02-14 12:52:47 +00002336X509 CRT ASN1 (Name with X520 OU)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002337depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002338x509parse_crt:"308199308183a0030201008204deadbeef300d06092a864886f70d01010b0500300f310d300b060355040b130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: OU=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002339
Hanno Becker2389d162019-02-14 12:52:47 +00002340X509 CRT ASN1 (Name with unknown X520 part)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002341depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002342x509parse_crt:"308199308183a0030201008204deadbeef300d06092a864886f70d01010b0500300f310d300b06035504de130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ?\?=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002343
Hanno Becker2389d162019-02-14 12:52:47 +00002344X509 CRT ASN1 (Name with composite RDN)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002345depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard555fbf82015-02-04 17:11:55 +00002346x509parse_crt:"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":"cert. version \: 3\nserial number \: 4C\:20\:E3\:BD\nissuer name \: C=US, ST=CA, O=Internet Widgits Pty Ltd, CN=Frankencert CA\nsubject name \: C=US, ST=Washington, ??=US, ??=Delaware, O=Authorize.Net LLC, ??=Private Organization, serialNumber=4369191 + CN=www.authorize.net, L=San Francisco\nissued on \: 2013-08-02 15\:14\:37\nexpires on \: 2015-08-17 05\:54\:31\nsigned using \: RSA with SHA1\nRSA key size \: 1024 bits\n":0
2347
Hanno Becker2389d162019-02-14 12:52:47 +00002348X509 CRT ASN1 (Name with PKCS9 email)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002349depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002350x509parse_crt:"30819f308189a0030201008204deadbeef300d06092a864886f70d01010b050030153113301106092a864886f70d010901130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: emailAddress=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002351
Hanno Becker2389d162019-02-14 12:52:47 +00002352X509 CRT ASN1 (Name with unknown PKCS9 part)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002353depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002354x509parse_crt:"30819f308189a0030201008204deadbeef300d06092a864886f70d01010b050030153113301106092a864886f70d0109ab130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffff300d06092a864886f70d01010b0500030200ff":"cert. version \: 1\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ?\?=Test\nsubject name \: ?\?=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\n":0
Paul Bakkerc26a1892009-07-19 20:30:14 +00002355
Hanno Becker2389d162019-02-14 12:52:47 +00002356X509 CRT ASN1 (ECDSA signature, RSA key)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002357depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_PK_CAN_ECDSA_SOME
Hanno Becker32b48ea2019-06-03 09:48:09 +01002358x509parse_crt:"3081e630819e020103300906072a8648ce3d0401300f310d300b0603550403130454657374301e170d3133303731303039343631385a170d3233303730383039343631385a300f310d300b0603550403130454657374304c300d06092a864886f70d0101010500033b003038023100e8f546061d3b49bc2f6b7524b7ea4d73a8d5293ee8c64d9407b70b5d16baebc32b8205591eab4e1eb57e9241883701250203010001300906072a8648ce3d0401033800303502186e18209afbed14a0d9a796efcad68891e3ccd5f75815c833021900e92b4fd460b1994693243b9ffad54729de865381bda41d25":"cert. version \: 1\nserial number \: 03\nissuer name \: CN=Test\nsubject name \: CN=Test\nissued on \: 2013-07-10 09\:46\:18\nexpires on \: 2023-07-08 09\:46\:18\nsigned using \: ECDSA with SHA1\nRSA key size \: 384 bits\n":0
Manuel Pégourié-Gonnard72ef0b72013-07-10 12:20:54 +02002359
Hanno Becker2389d162019-02-14 12:52:47 +00002360X509 CRT ASN1 (ECDSA signature, EC key)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002361depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP192R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Hanno Becker32b48ea2019-06-03 09:48:09 +01002362x509parse_crt:"3081eb3081a3020900f41534662ec7e912300906072a8648ce3d0401300f310d300b0603550403130454657374301e170d3133303731303039343031395a170d3233303730383039343031395a300f310d300b06035504031304546573743049301306072a8648ce3d020106082a8648ce3d030101033200042137969fabd4e370624a0e1a33e379cab950cce00ef8c3c3e2adaeb7271c8f07659d65d3d777dcf21614363ae4b6e617300906072a8648ce3d04010338003035021858cc0f957946fe6a303d92885a456aa74c743c7b708cbd37021900fe293cac21af352d16b82eb8ea54e9410b3abaadd9f05dd6":"cert. version \: 1\nserial number \: F4\:15\:34\:66\:2E\:C7\:E9\:12\nissuer name \: CN=Test\nsubject name \: CN=Test\nissued on \: 2013-07-10 09\:40\:19\nexpires on \: 2023-07-08 09\:40\:19\nsigned using \: ECDSA with SHA1\nEC key size \: 192 bits\n":0
Manuel Pégourié-Gonnarda3c86c32013-07-10 16:54:29 +02002363
Hanno Becker2389d162019-02-14 12:52:47 +00002364X509 CRT ASN1 (RSA signature, EC key)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002365depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP192R1_ENABLED:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C
Hanno Becker32b48ea2019-06-03 09:48:09 +01002366x509parse_crt:"3081e430819f020104300d06092a864886f70d0101050500300f310d300b0603550403130454657374301e170d3133303731303135303233375a170d3233303730383135303233375a300f310d300b06035504031304546573743049301306072a8648ce3d020106082a8648ce3d03010103320004e962551a325b21b50cf6b990e33d4318fd16677130726357a196e3efe7107bcb6bdc6d9db2a4df7c964acfe81798433d300d06092a864886f70d01010505000331001a6c18cd1e457474b2d3912743f44b571341a7859a0122774a8e19a671680878936949f904c9255bdd6fffdb33a7e6d8":"cert. version \: 1\nserial number \: 04\nissuer name \: CN=Test\nsubject name \: CN=Test\nissued on \: 2013-07-10 15\:02\:37\nexpires on \: 2023-07-08 15\:02\:37\nsigned using \: RSA with SHA1\nEC key size \: 192 bits\n":0
Manuel Pégourié-Gonnarda3c86c32013-07-10 16:54:29 +02002367
Nicola Di Lieto17bb60c2020-05-28 23:04:15 +02002368X509 CRT ASN1 (Unsupported critical extension)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002369depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lieto17bb60c2020-05-28 23:04:15 +02002370x509parse_crt:"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":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2371
Nicola Di Lietoe58b4632020-05-29 22:58:25 +02002372X509 CRT ASN1 (Unsupported critical extension recognized by callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002373depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lieto17bb60c2020-05-28 23:04:15 +02002374x509parse_crt_cb:"308203353082021da00302010202104d3ebbb8a870f9c78c55a8a7e12fd516300d06092a864886f70d01010b05003010310e300c06035504030c0564756d6d79301e170d3230303432383137343234335a170d3230303632373137343234335a3010310e300c06035504030c0564756d6d7930820122300d06092a864886f70d01010105000382010f003082010a0282010100a51b75b3f7da2d60ea1b0fc077f0dbb2bbb6fe1b474028368af8dc2664672896efff171033b0aede0b323a89d5c6db4d517404bc97b65264e41b9e9e86a6f40ace652498d4b3b859544d1bacfd7f86325503eed046f517406545c0ffb5560f83446dedce0fcafcc41ac8495488a6aa912ae45192ef7e3efa20d0f7403b0baa62c7e2e5404c620c5793623132aa20f624f08d88fbf0985af39433f5a24d0b908e5219d8ba6a404d3ee8418203b62a40c8eb18837354d50281a6a2bf5012e505c419482787b7a81e5935613ceea0c6d93e86f76282b6aa406fb3a1796c56b32e8a22afc3f7a3c9daa8f0e2846ff0d50abfc862a52f6cf0aaece6066c860376f3ed0203010001a3818a308187300c0603551d13040530030101ff30130603551d110101ff04093007820564756d6d79301206082b0601050507011f0101ff0403040100300e0603551d0f0101ff040403020184301d0603551d0e04160414e6e451ec8d19d9677b2d272a9d73b939fa2d915a301f0603551d23041830168014e6e451ec8d19d9677b2d272a9d73b939fa2d915a300d06092a864886f70d01010b0500038201010056d06047b7f48683e2347ca726997d9700b4f2cf1d8bc0ef17addac8445d38ffd7f8079055ead878b6a74c8384d0e30150c8990aa74f59cda6ebcb49465d8991ffa16a4c927a26e4639d1875a3ac396c7455c7eda40dbe66054a03d27f961c15e86bd5b06db6b26572977bcda93453b6b6a88ef96b31996a7bd17323525b33050d28deec9c33a3f9765a11fb99d0e222bd39a6db3a788474c9ca347377688f837d42f5841667bffcbe6b473e6f229f286a0829963e591a99aa7f67e9d20c36ccd2ac84cb85b7a8b3396a6cbe59a573ffff726f373197c230de5c92a52c5bc87e29c20bdf6e89609764a60c649022aabd768f3557661b083ae00e6afc8a5bf2ed":"cert. version \: 3\nserial number \: 4D\:3E\:BB\:B8\:A8\:70\:F9\:C7\:8C\:55\:A8\:A7\:E1\:2F\:D5\:16\nissuer name \: CN=dummy\nsubject name \: CN=dummy\nissued on \: 2020-04-28 17\:42\:43\nexpires on \: 2020-06-27 17\:42\:43\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\nsubject alt name \:\n dNSName \: dummy\nkey usage \: Digital Signature, Key Cert Sign\n":0
2375
Nicola Di Lietoe58b4632020-05-29 22:58:25 +02002376X509 CRT ASN1 (Unsupported critical extension not recognized by callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002377depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lietoe58b4632020-05-29 22:58:25 +02002378x509parse_crt_cb:"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":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2379
2380X509 CRT ASN1 (Unsupported non critical extension recognized by callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002381depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lietoe58b4632020-05-29 22:58:25 +02002382x509parse_crt_cb:"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":"cert. version \: 3\nserial number \: 4D\:3E\:BB\:B8\:A8\:70\:F9\:C7\:8C\:55\:A8\:A7\:E1\:2F\:D5\:16\nissuer name \: CN=dummy\nsubject name \: CN=dummy\nissued on \: 2020-04-28 17\:42\:43\nexpires on \: 2020-06-27 17\:42\:43\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\nsubject alt name \:\n dNSName \: dummy\nkey usage \: Digital Signature, Key Cert Sign\n":0
2383
2384X509 CRT ASN1 (Unsupported non critical extension not recognized by callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002385depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lietoe58b4632020-05-29 22:58:25 +02002386x509parse_crt_cb:"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":"cert. version \: 3\nserial number \: 4D\:3E\:BB\:B8\:A8\:70\:F9\:C7\:8C\:55\:A8\:A7\:E1\:2F\:D5\:16\nissuer name \: CN=dummy\nsubject name \: CN=dummy\nissued on \: 2020-04-28 17\:42\:43\nexpires on \: 2020-06-27 17\:42\:43\nsigned using \: RSA with SHA-256\nRSA key size \: 2048 bits\nbasic constraints \: CA=true\nsubject alt name \:\n dNSName \: dummy\nkey usage \: Digital Signature, Key Cert Sign\n":0
2387
Nicola Di Lietoc84b1e62020-06-13 11:08:16 +02002388X509 CRT ASN1 (Unsupported critical policy recognized by callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002389depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lietoc84b1e62020-06-13 11:08:16 +02002390x509parse_crt_cb:"3081b130819ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a315301330110603551d20010101040730053003060101300d06092a864886f70d01010b0500030200ff":"cert. version \: 3\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ??=Test\nsubject name \: ??=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\ncertificate policies \: ???\n":0
2391
2392X509 CRT ASN1 (Unsupported critical policy not recognized by callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002393depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lietoc84b1e62020-06-13 11:08:16 +02002394x509parse_crt_cb:"3081b130819ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a315301330110603551d20010101040730053003060100300d06092a864886f70d01010b0500030200ff":"":MBEDTLS_ERR_X509_FEATURE_UNAVAILABLE
2395
2396X509 CRT ASN1 (Unsupported non critical policy recognized by callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002397depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lietoc84b1e62020-06-13 11:08:16 +02002398x509parse_crt_cb:"3081b130819ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a315301330110603551d20010100040730053003060101300d06092a864886f70d01010b0500030200ff":"cert. version \: 3\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ??=Test\nsubject name \: ??=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\ncertificate policies \: ???\n":0
2399
2400X509 CRT ASN1 (Unsupported non critical policy not recognized by callback)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002401depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Nicola Di Lietoc84b1e62020-06-13 11:08:16 +02002402x509parse_crt_cb:"3081b130819ba0030201028204deadbeef300d06092a864886f70d01010b0500300c310a30080600130454657374301c170c303930313031303030303030170c303931323331323335393539300c310a30080600130454657374302a300d06092a864886f70d010101050003190030160210ffffffffffffffffffffffffffffffff0202ffffa100a200a315301330110603551d20010100040730053003060100300d06092a864886f70d01010b0500030200ff":"cert. version \: 3\nserial number \: DE\:AD\:BE\:EF\nissuer name \: ??=Test\nsubject name \: ??=Test\nissued on \: 2009-01-01 00\:00\:00\nexpires on \: 2009-12-31 23\:59\:59\nsigned using \: RSA with SHA-256\nRSA key size \: 128 bits\ncertificate policies \: ???\n":0
2403
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002404X509 CRL ASN1 (Incorrect first tag)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002405x509parse_crl:"":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002406
2407X509 CRL ASN1 (Correct first tag, data length does not match)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002408x509parse_crl:"300000":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002409
2410X509 CRL ASN1 (TBSCertList, tag missing)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002411x509parse_crl:"3000":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002412
2413X509 CRL ASN1 (TBSCertList, version tag len missing)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002414x509parse_crl:"3003300102":"":MBEDTLS_ERR_X509_INVALID_VERSION + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002415
2416X509 CRL ASN1 (TBSCertList, version correct, alg missing)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002417x509parse_crl:"30053003020100":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002418
2419X509 CRL ASN1 (TBSCertList, alg correct, incorrect version)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002420x509parse_crl:"300b3009020102300406000500":"":MBEDTLS_ERR_X509_UNKNOWN_VERSION
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002421
2422X509 CRL ASN1 (TBSCertList, correct version, sig_oid1 unknown)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002423x509parse_crl:"300b3009020100300406000500":"":MBEDTLS_ERR_X509_UNKNOWN_SIG_ALG
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002424
2425X509 CRL ASN1 (TBSCertList, sig_oid1 id unknown)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002426x509parse_crl:"30143012020100300d06092a864886f70d01010f0500":"":MBEDTLS_ERR_X509_UNKNOWN_SIG_ALG
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002427
2428X509 CRL ASN1 (TBSCertList, sig_oid1 correct, issuer missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002429depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002430x509parse_crl:"30143012020100300d06092a864886f70d01010e0500":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002431
2432X509 CRL ASN1 (TBSCertList, issuer set missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002433depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002434x509parse_crl:"30163014020100300d06092a864886f70d01010e05003000":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002435
2436X509 CRL ASN1 (TBSCertList, correct issuer, thisUpdate missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002437depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002438x509parse_crl:"30253023020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002439
2440X509 CRL ASN1 (TBSCertList, correct thisUpdate, nextUpdate missing, entries length missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002441depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002442x509parse_crl:"30343032020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c30393031303130303030303030":"":MBEDTLS_ERR_ASN1_OUT_OF_DATA
Paul Bakkere4ff4132009-07-27 20:22:10 +00002443
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002444X509 CRL ASN1 (TBSCertList, entries present, invalid sig_alg)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002445depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002446x509parse_crl:"304a3047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128202abcd170c30383132333132333539353900":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002447
2448X509 CRL ASN1 (TBSCertList, entries present, date in entry invalid)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002449depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002450x509parse_crl:"304a3047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128202abcd190c30383132333132333539353900":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002451
2452X509 CRL ASN1 (TBSCertList, sig_alg present, sig_alg does not match)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002453depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002454x509parse_crl:"30583047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128202abcd170c303831323331323335393539300d06092a864886f70d01010d0500":"":MBEDTLS_ERR_X509_SIG_MISMATCH
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002455
Paul Bakkere4ff4132009-07-27 20:22:10 +00002456X509 CRL ASN1 (TBSCertList, sig present, len mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002457depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002458x509parse_crl:"305d3047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128202abcd170c303831323331323335393539300d06092a864886f70d01010e05000302000100":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002459
Gilles Peskine210bea32020-08-06 16:05:35 +02002460# 305c
2461# 3047 tbsCertList TBSCertList
2462# 020100 version INTEGER OPTIONAL
2463# 300d signatureAlgorithm AlgorithmIdentifi
2464# 06092a864886f70d01010e
2465# 0500
2466# 300f issuer Name
2467# 310d300b0603550403130441424344
2468# 170c303930313031303030303030 thisUpdate Time
2469# 3014 revokedCertificates
2470# 3012 entry 1
2471# 8202abcd userCertificate CertificateSerialNum
2472# 170c303831323331323335393539 revocationDate Time
2473# 300d signatureAlgorithm AlgorithmIdentifi
2474# 06092a864886f70d01010e
2475# 0500
2476# 03020001 signatureValue BIT STRING
2477# The subsequent TBSCertList negative tests remove or modify some elements.
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002478X509 CRL ASN1 (TBSCertList, sig present)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002479depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224:!MBEDTLS_X509_REMOVE_INFO
Paul Bakkerc70b9822013-04-07 22:00:46 +02002480x509parse_crl:"305c3047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128202abcd170c303831323331323335393539300d06092a864886f70d01010e050003020001":"CRL version \: 1\nissuer name \: CN=ABCD\nthis update \: 2009-01-01 00\:00\:00\nnext update \: 0000-00-00 00\:00\:00\nRevoked certificates\:\nserial number\: AB\:CD revocation date\: 2008-12-31 23\:59\:59\nsigned using \: RSA with SHA-224\n":0
Paul Bakker6b0fa4f2009-07-20 20:35:41 +00002481
Gilles Peskineb2281e12020-07-16 18:18:22 +02002482X509 CRL ASN1 (TBSCertList, signatureValue missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002483depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Gilles Peskineb2281e12020-07-16 18:18:22 +02002484x509parse_crl:"30583047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128202abcd170c303831323331323335393539300d06092a864886f70d01010e0500":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2485
2486X509 CRL ASN1 (TBSCertList, signatureAlgorithm missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002487depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Gilles Peskineb2281e12020-07-16 18:18:22 +02002488x509parse_crl:"30493047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128202abcd170c303831323331323335393539":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2489
2490X509 CRL ASN1 (TBSCertList, single empty entry at end)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002491depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Gilles Peskineb2281e12020-07-16 18:18:22 +02002492x509parse_crl:"30373035020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c30393031303130303030303030023000":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2493
2494X509 CRL ASN1 (TBSCertList, good entry then empty entry at end)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002495depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Gilles Peskineb2281e12020-07-16 18:18:22 +02002496x509parse_crl:"304b3049020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301630128202abcd170c3038313233313233353935393000":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2497
2498X509 CRL ASN1 (TBSCertList, missing time in entry)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002499depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Gilles Peskineb2281e12020-07-16 18:18:22 +02002500x509parse_crl:"304e3039020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030300630048202abcd300d06092a864886f70d01010e050003020001":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2501
2502X509 CRL ASN1 (TBSCertList, missing time in entry at end)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002503depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Gilles Peskineb2281e12020-07-16 18:18:22 +02002504x509parse_crl:"303b3039020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030300630048202abcd":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2505
2506X509 CRL ASN1 (TBSCertList, invalid tag for time in entry)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002507depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Gilles Peskineb2281e12020-07-16 18:18:22 +02002508x509parse_crl:"305c3047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128202abcd190c303831323331323335393539300d06092a864886f70d01010e050003020001":"":MBEDTLS_ERR_X509_INVALID_DATE + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2509
2510X509 CRL ASN1 (TBSCertList, invalid tag for serial)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002511depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224
Gilles Peskineb2281e12020-07-16 18:18:22 +02002512x509parse_crl:"305c3047020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030301430128402abcd170c303831323331323335393539300d06092a864886f70d01010e050003020001":"":MBEDTLS_ERR_X509_INVALID_SERIAL + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
2513
Paul Bakkere4ff4132009-07-27 20:22:10 +00002514X509 CRL ASN1 (TBSCertList, no entries)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002515depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA224:!MBEDTLS_X509_REMOVE_INFO
Paul Bakkerc70b9822013-04-07 22:00:46 +02002516x509parse_crl:"30463031020100300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030300d06092a864886f70d01010e050003020001":"CRL version \: 1\nissuer name \: CN=ABCD\nthis update \: 2009-01-01 00\:00\:00\nnext update \: 0000-00-00 00\:00\:00\nRevoked certificates\:\nsigned using \: RSA with SHA-224\n":0
Manuel Pégourié-Gonnardfbae2a12013-11-26 16:43:39 +01002517
Andres AGfff826c2017-03-07 11:11:12 +00002518X509 CRL ASN1 (invalid version 2)
2519x509parse_crl:"30463031020102300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030300d06092a864886f70d01010e050003020001":"":MBEDTLS_ERR_X509_UNKNOWN_VERSION
2520
2521X509 CRL ASN1 (invalid version overflow)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002522x509parse_crl:"3049303102047fffffff300d06092a864886f70d01010e0500300f310d300b0603550403130441424344170c303930313031303030303030300d06092a864886f70d01010e050003020001":"":MBEDTLS_ERR_X509_UNKNOWN_VERSION
Andres AGfff826c2017-03-07 11:11:12 +00002523
Manuel Pégourié-Gonnard0bdb0502018-03-14 11:34:29 +01002524X509 CRL ASN1 (extension seq too long, crl-idp.pem byte 121)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002525depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnard0bdb0502018-03-14 11:34:29 +01002526x509parse_crl:"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":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2527
2528X509 CRL ASN1 (extension oid too long, crl-idp.pem byte 123)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002529depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnard0bdb0502018-03-14 11:34:29 +01002530x509parse_crl:"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":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2531
2532X509 CRL ASN1 (extension critical invalid length, crl-idp.pem byte 128)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002533depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnard0bdb0502018-03-14 11:34:29 +01002534x509parse_crl:"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":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_INVALID_LENGTH
2535
2536X509 CRL ASN1 (extension data too long, crl-idp.pem byte 131)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002537depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnard0bdb0502018-03-14 11:34:29 +01002538x509parse_crl:"308201b330819c020101300d06092a864886f70d01010b0500303b310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c3119301706035504031310506f6c617253534c2054657374204341170d3138303331343037333134385a170d3238303331343037333134385aa02d302b30290603551d1c0101ff0420301da01ba0198617687474703a2f2f706b692e6578616d706c652e636f6d2f300d06092a864886f70d01010b05000382010100b3fbe9d586eaf4b8ff60cf8edae06a85135db78f78198498719725b5b403c0b803c2c150f52faae7306d6a7871885dc2e9dc83a164bac7263776474ef642b660040b35a1410ac291ac8f6f18ab85e7fd6e22bd1af1c41ca95cf2448f6e2b42a018493dfc03c6b6aa1b9e3fe7b76af2182fb2121db4166bf0167d6f379c5a58adee5082423434d97be2909f5e7488053f996646db10dd49782626da53ad8eada01813c031b2bacdb0203bc017aac1735951a11d013ee4d1d5f7143ccbebf2371e66a1bec6e1febe69148f50784eef8adbb66664c96196d7e0c0bcdc807f447b54e058f37642a3337995bfbcd332208bd6016936705c82263eabd7affdba92fae3":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_OUT_OF_DATA
2539
2540X509 CRL ASN1 (extension data too short, crl-idp.pem byte 131)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002541depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Manuel Pégourié-Gonnard0bdb0502018-03-14 11:34:29 +01002542x509parse_crl:"308201b330819c020101300d06092a864886f70d01010b0500303b310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c3119301706035504031310506f6c617253534c2054657374204341170d3138303331343037333134385a170d3238303331343037333134385aa02d302b30290603551d1c0101ff041e301da01ba0198617687474703a2f2f706b692e6578616d706c652e636f6d2f300d06092a864886f70d01010b05000382010100b3fbe9d586eaf4b8ff60cf8edae06a85135db78f78198498719725b5b403c0b803c2c150f52faae7306d6a7871885dc2e9dc83a164bac7263776474ef642b660040b35a1410ac291ac8f6f18ab85e7fd6e22bd1af1c41ca95cf2448f6e2b42a018493dfc03c6b6aa1b9e3fe7b76af2182fb2121db4166bf0167d6f379c5a58adee5082423434d97be2909f5e7488053f996646db10dd49782626da53ad8eada01813c031b2bacdb0203bc017aac1735951a11d013ee4d1d5f7143ccbebf2371e66a1bec6e1febe69148f50784eef8adbb66664c96196d7e0c0bcdc807f447b54e058f37642a3337995bfbcd332208bd6016936705c82263eabd7affdba92fae3":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
2543
Manuel Pégourié-Gonnarda63305d2018-03-14 12:23:56 +01002544X509 CRL ASN1 (extension not critical explicit, crl-idp.pem byte 129)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002545depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256:!MBEDTLS_X509_REMOVE_INFO
Manuel Pégourié-Gonnarda63305d2018-03-14 12:23:56 +01002546x509parse_crl:"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":"CRL version \: 2\nissuer name \: C=NL, O=PolarSSL, CN=PolarSSL Test CA\nthis update \: 2018-03-14 07\:31\:48\nnext update \: 2028-03-14 07\:31\:48\nRevoked certificates\:\nsigned using \: RSA with SHA-256\n":0
2547
Manuel Pégourié-Gonnardfbae2a12013-11-26 16:43:39 +01002548X509 CRT parse path #2 (one cert)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002549depends_on:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002550mbedtls_x509_crt_parse_path:"data_files/dir1":0:1
Manuel Pégourié-Gonnardfbae2a12013-11-26 16:43:39 +01002551
2552X509 CRT parse path #3 (two certs)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002553depends_on:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002554mbedtls_x509_crt_parse_path:"data_files/dir2":0:2
Manuel Pégourié-Gonnardfbae2a12013-11-26 16:43:39 +01002555
2556X509 CRT parse path #4 (two certs, one non-cert)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002557depends_on:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002558mbedtls_x509_crt_parse_path:"data_files/dir3":1:2
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002559
Manuel Pégourié-Gonnard1beb0482017-06-05 13:49:44 +02002560X509 CRT verify long chain (max intermediate CA, trusted)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002561depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard1beb0482017-06-05 13:49:44 +02002562mbedtls_x509_crt_verify_max:"data_files/dir-maxpath/00.crt":"data_files/dir-maxpath":MBEDTLS_X509_MAX_INTERMEDIATE_CA:0:0
2563
2564X509 CRT verify long chain (max intermediate CA, untrusted)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002565depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard1beb0482017-06-05 13:49:44 +02002566mbedtls_x509_crt_verify_max:"data_files/test-ca2.crt":"data_files/dir-maxpath":MBEDTLS_X509_MAX_INTERMEDIATE_CA-1:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED
2567
2568X509 CRT verify long chain (max intermediate CA + 1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002569depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard31458a12017-06-26 10:11:49 +02002570mbedtls_x509_crt_verify_max:"data_files/dir-maxpath/00.crt":"data_files/dir-maxpath":MBEDTLS_X509_MAX_INTERMEDIATE_CA+1:MBEDTLS_ERR_X509_FATAL_ERROR:-1
Manuel Pégourié-Gonnard1beb0482017-06-05 13:49:44 +02002571
Janos Follathef4f2582015-10-11 16:17:27 +02002572X509 CRT verify chain #1 (zero pathlen intermediate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002573depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002574mbedtls_x509_crt_verify_chain:"data_files/dir4/cert14.crt data_files/dir4/cert13.crt data_files/dir4/cert12.crt":"data_files/dir4/cert11.crt":MBEDTLS_X509_BADCERT_NOT_TRUSTED:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"":0
Janos Follath822b2c32015-10-11 10:25:22 +02002575
Janos Follathef4f2582015-10-11 16:17:27 +02002576X509 CRT verify chain #2 (zero pathlen root)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002577depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002578mbedtls_x509_crt_verify_chain:"data_files/dir4/cert23.crt data_files/dir4/cert22.crt":"data_files/dir4/cert21.crt":MBEDTLS_X509_BADCERT_NOT_TRUSTED:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"":0
Janos Follathef4f2582015-10-11 16:17:27 +02002579
2580X509 CRT verify chain #3 (nonzero pathlen root)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002581depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002582mbedtls_x509_crt_verify_chain:"data_files/dir4/cert34.crt data_files/dir4/cert33.crt data_files/dir4/cert32.crt":"data_files/dir4/cert31.crt":MBEDTLS_X509_BADCERT_NOT_TRUSTED:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"":0
Janos Follathef4f2582015-10-11 16:17:27 +02002583
2584X509 CRT verify chain #4 (nonzero pathlen intermediate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002585depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002586mbedtls_x509_crt_verify_chain:"data_files/dir4/cert45.crt data_files/dir4/cert44.crt data_files/dir4/cert43.crt data_files/dir4/cert42.crt":"data_files/dir4/cert41.crt":MBEDTLS_X509_BADCERT_NOT_TRUSTED:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"":0
Janos Follathef4f2582015-10-11 16:17:27 +02002587
2588X509 CRT verify chain #5 (nonzero maxpathlen intermediate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002589depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002590mbedtls_x509_crt_verify_chain:"data_files/dir4/cert54.crt data_files/dir4/cert53.crt data_files/dir4/cert52.crt":"data_files/dir4/cert51.crt":0:0:"":0
Janos Follathef4f2582015-10-11 16:17:27 +02002591
2592X509 CRT verify chain #6 (nonzero maxpathlen root)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002593depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002594mbedtls_x509_crt_verify_chain:"data_files/dir4/cert63.crt data_files/dir4/cert62.crt":"data_files/dir4/cert61.crt":0:0:"":0
Janos Follathef4f2582015-10-11 16:17:27 +02002595
2596X509 CRT verify chain #7 (maxpathlen root, self signed in path)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002597depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002598mbedtls_x509_crt_verify_chain:"data_files/dir4/cert74.crt data_files/dir4/cert73.crt data_files/dir4/cert72.crt":"data_files/dir4/cert71.crt":0:0:"":0
Janos Follathef4f2582015-10-11 16:17:27 +02002599
2600X509 CRT verify chain #8 (self signed maxpathlen root)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002601depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002602mbedtls_x509_crt_verify_chain:"data_files/dir4/cert61.crt data_files/dir4/cert63.crt data_files/dir4/cert62.crt":"data_files/dir4/cert61.crt":0:0:"":0
Janos Follathef4f2582015-10-11 16:17:27 +02002603
Manuel Pégourié-Gonnard8b4331a2015-11-19 10:52:12 +01002604X509 CRT verify chain #9 (zero pathlen first intermediate, valid)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002605depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002606mbedtls_x509_crt_verify_chain:"data_files/dir4/cert83.crt data_files/dir4/cert82.crt":"data_files/dir4/cert81.crt":0:0:"":0
Manuel Pégourié-Gonnarda3aa43d2015-11-19 10:46:07 +01002607
Manuel Pégourié-Gonnard8b4331a2015-11-19 10:52:12 +01002608X509 CRT verify chain #10 (zero pathlen root, valid)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002609depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002610mbedtls_x509_crt_verify_chain:"data_files/dir4/cert92.crt":"data_files/dir4/cert91.crt":0:0:"":0
Manuel Pégourié-Gonnard8b4331a2015-11-19 10:52:12 +01002611
Manuel Pégourié-Gonnard9832cea2017-05-23 10:13:40 +02002612X509 CRT verify chain #11 (valid chain, missing profile)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002613depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002614mbedtls_x509_crt_verify_chain:"data_files/dir4/cert92.crt":"data_files/dir4/cert91.crt":-1:MBEDTLS_ERR_X509_BAD_INPUT_DATA:"nonesuch":0
Manuel Pégourié-Gonnard9832cea2017-05-23 10:13:40 +02002615
Manuel Pégourié-Gonnard6622fed2017-05-23 11:29:29 +02002616X509 CRT verify chain #12 (suiteb profile, RSA root)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002617depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP192R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002618mbedtls_x509_crt_verify_chain:"data_files/server3.crt":"data_files/test-ca.crt":MBEDTLS_X509_BADCERT_BAD_MD|MBEDTLS_X509_BADCERT_BAD_PK|MBEDTLS_X509_BADCERT_BAD_KEY:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"suiteb":0
Manuel Pégourié-Gonnard6622fed2017-05-23 11:29:29 +02002619
2620X509 CRT verify chain #13 (RSA only profile, EC root)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002621depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002622mbedtls_x509_crt_verify_chain:"data_files/server4.crt":"data_files/test-ca2.crt":MBEDTLS_X509_BADCERT_BAD_PK|MBEDTLS_X509_BADCERT_BAD_KEY:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"rsa3072":0
Manuel Pégourié-Gonnard6622fed2017-05-23 11:29:29 +02002623
Manuel Pégourié-Gonnardd0922772017-06-27 13:26:43 +02002624X509 CRT verify chain #13 (RSA only profile, EC trusted EE)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002625depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnardd0922772017-06-27 13:26:43 +02002626mbedtls_x509_crt_verify_chain:"data_files/server5-selfsigned.crt":"data_files/server5-selfsigned.crt":MBEDTLS_X509_BADCERT_BAD_PK|MBEDTLS_X509_BADCERT_BAD_KEY:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"rsa3072":0
2627
Manuel Pégourié-Gonnard6622fed2017-05-23 11:29:29 +02002628X509 CRT verify chain #14 (RSA-3072 profile, root key too small)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002629depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002630mbedtls_x509_crt_verify_chain:"data_files/server1.crt":"data_files/test-ca.crt":MBEDTLS_X509_BADCERT_BAD_MD|MBEDTLS_X509_BADCERT_BAD_KEY:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"rsa3072":0
Manuel Pégourié-Gonnard6622fed2017-05-23 11:29:29 +02002631
2632X509 CRT verify chain #15 (suiteb profile, rsa intermediate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002633depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002634mbedtls_x509_crt_verify_chain:"data_files/server7.crt data_files/test-int-ca.crt":"data_files/test-ca2.crt":MBEDTLS_X509_BADCERT_BAD_PK:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"suiteb":0
Manuel Pégourié-Gonnard6622fed2017-05-23 11:29:29 +02002635
2636X509 CRT verify chain #16 (RSA-only profile, EC intermediate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002637depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002638mbedtls_x509_crt_verify_chain:"data_files/server8.crt data_files/test-int-ca2.crt":"data_files/test-ca.crt":MBEDTLS_X509_BADCERT_BAD_PK|MBEDTLS_X509_BADCERT_BAD_KEY:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"rsa3072":0
Manuel Pégourié-Gonnard6622fed2017-05-23 11:29:29 +02002639
2640X509 CRT verify chain #17 (SHA-512 profile)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002641depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard6b9d53f2017-05-23 12:26:58 +02002642mbedtls_x509_crt_verify_chain:"data_files/server7.crt data_files/test-int-ca.crt":"data_files/test-ca2.crt":MBEDTLS_X509_BADCERT_BAD_MD:MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:"sha512":0
Manuel Pégourié-Gonnard6622fed2017-05-23 11:29:29 +02002643
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002644X509 CRT verify chain #18 (len=1, vrfy fatal on depth 1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002645depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA512
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002646mbedtls_x509_crt_verify_chain:"data_files/server5.crt":"data_files/test-ca2.crt":-1:-2:"":2
2647
2648X509 CRT verify chain #19 (len=0, vrfy fatal on depth 0)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002649depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA512
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002650mbedtls_x509_crt_verify_chain:"data_files/server5.crt":"data_files/test-ca2.crt":-1:-1:"":1
2651
2652X509 CRT verify chain #20 (len=1, vrfy fatal on depth 0)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002653depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_MD_CAN_SHA512:MBEDTLS_MD_CAN_SHA1:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002654mbedtls_x509_crt_verify_chain:"data_files/server5.crt":"data_files/test-ca.crt":-1:-1:"":1
2655
2656X509 CRT verify chain #21 (len=3, vrfy fatal on depth 3)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002657depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_MD_CAN_SHA1:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002658mbedtls_x509_crt_verify_chain:"data_files/server10_int3_int-ca2_ca.crt":"data_files/test-ca.crt":-1:-4:"":8
2659
2660X509 CRT verify chain #22 (len=3, vrfy fatal on depth 2)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002661depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002662mbedtls_x509_crt_verify_chain:"data_files/server10_int3_int-ca2_ca.crt":"data_files/test-ca.crt":-1:-3:"":4
2663
2664X509 CRT verify chain #23 (len=3, vrfy fatal on depth 1)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002665depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002666mbedtls_x509_crt_verify_chain:"data_files/server10_int3_int-ca2_ca.crt":"data_files/test-ca.crt":-1:-2:"":2
2667
2668X509 CRT verify chain #24 (len=3, vrfy fatal on depth 0)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002669depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002670mbedtls_x509_crt_verify_chain:"data_files/server10_int3_int-ca2_ca.crt":"data_files/test-ca.crt":-1:-1:"":1
2671
2672X509 CRT verify chain #25 (len=3, vrfy fatal on depth 3, untrusted)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002673depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard41859782017-05-23 12:58:53 +02002674mbedtls_x509_crt_verify_chain:"data_files/server10_int3_int-ca2_ca.crt":"data_files/test-ca2.crt":-1:-4:"":8
2675
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002676X509 OID description #1
Hanno Becker32b48ea2019-06-03 09:48:09 +01002677x509_oid_desc:"2b06010505070301":"TLS Web Server Authentication"
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002678
2679X509 OID description #2
Hanno Becker32b48ea2019-06-03 09:48:09 +01002680x509_oid_desc:"2b0601050507030f":"notfound"
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002681
2682X509 OID description #3
Hanno Becker32b48ea2019-06-03 09:48:09 +01002683x509_oid_desc:"2b0601050507030100":"notfound"
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002684
2685X509 OID numstring #1 (wide buffer)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002686x509_oid_numstr:"2b06010505070301":"1.3.6.1.5.5.7.3.1":20:17
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002687
2688X509 OID numstring #2 (buffer just fits)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002689x509_oid_numstr:"2b06010505070301":"1.3.6.1.5.5.7.3.1":18:17
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002690
2691X509 OID numstring #3 (buffer too small)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002692x509_oid_numstr:"2b06010505070301":"1.3.6.1.5.5.7.3.1":17:MBEDTLS_ERR_OID_BUF_TOO_SMALL
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002693
2694X509 OID numstring #4 (larger number)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002695x509_oid_numstr:"2a864886f70d":"1.2.840.113549":15:14
Manuel Pégourié-Gonnard7afdb882014-03-28 16:06:35 +01002696
2697X509 OID numstring #5 (arithmetic overflow)
David Horstmanna4fad2b2023-02-20 14:57:47 +00002698x509_oid_numstr:"2a8648f9f8f7f6f5f4f3f2f1f001":"":100:MBEDTLS_ERR_ASN1_INVALID_DATA
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002699
Hanno Becker2389d162019-02-14 12:52:47 +00002700X509 CRT keyUsage #1 (no extension, expected KU)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002701depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnarde6028c92015-04-20 12:19:02 +01002702x509_check_key_usage:"data_files/server1.crt":MBEDTLS_X509_KU_DIGITAL_SIGNATURE|MBEDTLS_X509_KU_KEY_ENCIPHERMENT:0
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002703
Hanno Becker2389d162019-02-14 12:52:47 +00002704X509 CRT keyUsage #2 (no extension, surprising KU)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002705depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002706x509_check_key_usage:"data_files/server1.crt":MBEDTLS_X509_KU_KEY_CERT_SIGN:0
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002707
Hanno Becker2389d162019-02-14 12:52:47 +00002708X509 CRT keyUsage #3 (extension present, no KU)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002709depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002710x509_check_key_usage:"data_files/server1.key_usage.crt":0:0
2711
Hanno Becker2389d162019-02-14 12:52:47 +00002712X509 CRT keyUsage #4 (extension present, single KU present)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002713depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002714x509_check_key_usage:"data_files/server1.key_usage.crt":MBEDTLS_X509_KU_DIGITAL_SIGNATURE:0
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002715
Hanno Becker2389d162019-02-14 12:52:47 +00002716X509 CRT keyUsage #5 (extension present, single KU absent)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002717depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002718x509_check_key_usage:"data_files/server1.key_usage.crt":MBEDTLS_X509_KU_KEY_CERT_SIGN:MBEDTLS_ERR_X509_BAD_INPUT_DATA
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002719
Hanno Becker2389d162019-02-14 12:52:47 +00002720X509 CRT keyUsage #6 (extension present, combined KU present)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002721depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnarde6028c92015-04-20 12:19:02 +01002722x509_check_key_usage:"data_files/server1.key_usage.crt":MBEDTLS_X509_KU_DIGITAL_SIGNATURE|MBEDTLS_X509_KU_KEY_ENCIPHERMENT:0
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002723
Hanno Becker2389d162019-02-14 12:52:47 +00002724X509 CRT keyUsage #7 (extension present, combined KU both absent)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002725depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002726x509_check_key_usage:"data_files/server1.key_usage.crt":MBEDTLS_X509_KU_KEY_CERT_SIGN|MBEDTLS_X509_KU_CRL_SIGN:MBEDTLS_ERR_X509_BAD_INPUT_DATA
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002727
Hanno Becker2389d162019-02-14 12:52:47 +00002728X509 CRT keyUsage #8 (extension present, combined KU one absent)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002729depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnarde6028c92015-04-20 12:19:02 +01002730x509_check_key_usage:"data_files/server1.key_usage.crt":MBEDTLS_X509_KU_KEY_ENCIPHERMENT|MBEDTLS_X509_KU_KEY_AGREEMENT:MBEDTLS_ERR_X509_BAD_INPUT_DATA
Manuel Pégourié-Gonnard603116c2014-04-09 09:50:03 +02002731
Hanno Becker2389d162019-02-14 12:52:47 +00002732X509 CRT keyUsage #9 (extension present, decOnly allowed absent)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002733depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard655a9642015-06-23 10:48:44 +02002734x509_check_key_usage:"data_files/server1.key_usage.crt":MBEDTLS_X509_KU_DIGITAL_SIGNATURE|MBEDTLS_X509_KU_KEY_ENCIPHERMENT|MBEDTLS_X509_KU_DECIPHER_ONLY:0
2735
Hanno Becker2389d162019-02-14 12:52:47 +00002736X509 CRT keyUsage #10 (extension present, decOnly non-allowed present)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002737depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard655a9642015-06-23 10:48:44 +02002738x509_check_key_usage:"data_files/keyUsage.decipherOnly.crt":MBEDTLS_X509_KU_DIGITAL_SIGNATURE|MBEDTLS_X509_KU_KEY_ENCIPHERMENT:MBEDTLS_ERR_X509_BAD_INPUT_DATA
2739
Hanno Becker2389d162019-02-14 12:52:47 +00002740X509 CRT keyUsage #11 (extension present, decOnly allowed present)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002741depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Manuel Pégourié-Gonnard655a9642015-06-23 10:48:44 +02002742x509_check_key_usage:"data_files/keyUsage.decipherOnly.crt":MBEDTLS_X509_KU_DIGITAL_SIGNATURE|MBEDTLS_X509_KU_KEY_ENCIPHERMENT|MBEDTLS_X509_KU_DECIPHER_ONLY:0
2743
Hanno Becker2389d162019-02-14 12:52:47 +00002744X509 CRT extendedKeyUsage #1 (no extension, serverAuth)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002745depends_on:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002746x509_check_extended_key_usage:"data_files/server5.crt":"2b06010505070301":0
Manuel Pégourié-Gonnard7afb8a02014-04-10 17:53:56 +02002747
Hanno Becker2389d162019-02-14 12:52:47 +00002748X509 CRT extendedKeyUsage #2 (single value, present)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002749depends_on:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002750x509_check_extended_key_usage:"data_files/server5.eku-srv.crt":"2b06010505070301":0
Manuel Pégourié-Gonnard7afb8a02014-04-10 17:53:56 +02002751
Hanno Becker2389d162019-02-14 12:52:47 +00002752X509 CRT extendedKeyUsage #3 (single value, absent)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002753depends_on:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002754x509_check_extended_key_usage:"data_files/server5.eku-cli.crt":"2b06010505070301":MBEDTLS_ERR_X509_BAD_INPUT_DATA
Manuel Pégourié-Gonnard7afb8a02014-04-10 17:53:56 +02002755
Hanno Becker2389d162019-02-14 12:52:47 +00002756X509 CRT extendedKeyUsage #4 (two values, first)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002757depends_on:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002758x509_check_extended_key_usage:"data_files/server5.eku-srv_cli.crt":"2b06010505070301":0
Manuel Pégourié-Gonnard7afb8a02014-04-10 17:53:56 +02002759
Hanno Becker2389d162019-02-14 12:52:47 +00002760X509 CRT extendedKeyUsage #5 (two values, second)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002761depends_on:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002762x509_check_extended_key_usage:"data_files/server5.eku-srv_cli.crt":"2b06010505070302":0
Manuel Pégourié-Gonnard7afb8a02014-04-10 17:53:56 +02002763
Hanno Becker2389d162019-02-14 12:52:47 +00002764X509 CRT extendedKeyUsage #6 (two values, other)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002765depends_on:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002766x509_check_extended_key_usage:"data_files/server5.eku-srv_cli.crt":"2b06010505070303":MBEDTLS_ERR_X509_BAD_INPUT_DATA
Manuel Pégourié-Gonnard7afb8a02014-04-10 17:53:56 +02002767
Hanno Becker2389d162019-02-14 12:52:47 +00002768X509 CRT extendedKeyUsage #7 (any, random)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002769depends_on:MBEDTLS_PK_CAN_ECDSA_VERIFY:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002770x509_check_extended_key_usage:"data_files/server5.eku-cs_any.crt":"2b060105050703ff":0
Manuel Pégourié-Gonnard7afb8a02014-04-10 17:53:56 +02002771
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002772X509 RSASSA-PSS parameters ASN1 (good, all defaults)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002773x509_parse_rsassa_pss_params:"":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002774
2775X509 RSASSA-PSS parameters ASN1 (wrong initial tag)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002776x509_parse_rsassa_pss_params:"":MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002777
2778X509 RSASSA-PSS parameters ASN1 (unknown tag in top-level sequence)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002779x509_parse_rsassa_pss_params:"a400":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002780
2781X509 RSASSA-PSS parameters ASN1 (good, HashAlg SHA256)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002782depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002783x509_parse_rsassa_pss_params:"a00d300b0609608648016503040201":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA256:MBEDTLS_MD_SHA1:20:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002784
2785X509 RSASSA-PSS parameters ASN1 (good, explicit HashAlg = default)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002786depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Hanno Becker32b48ea2019-06-03 09:48:09 +01002787x509_parse_rsassa_pss_params:"a009300706052b0e03021a":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002788
2789X509 RSASSA-PSS parameters ASN1 (HashAlg wrong len #1)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002790x509_parse_rsassa_pss_params:"a00a300706052b0e03021a":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002791
2792X509 RSASSA-PSS parameters ASN1 (HashAlg wrong len #2)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002793depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Hanno Becker32b48ea2019-06-03 09:48:09 +01002794x509_parse_rsassa_pss_params:"a00a300706052b0e03021a00":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002795
2796X509 RSASSA-PSS parameters ASN1 (HashAlg with parameters)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002797x509_parse_rsassa_pss_params:"a00f300d06096086480165030402013000":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA256:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_INVALID_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002798
Paul Bakker237a8472014-06-25 14:45:24 +02002799X509 RSASSA-PSS parameters ASN1 (HashAlg unknown OID)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002800x509_parse_rsassa_pss_params:"a00d300b06096086480165030402ff":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA256:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_OID_NOT_FOUND
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002801
2802X509 RSASSA-PSS parameters ASN1 (good, MGAlg = MGF1-SHA256)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002803depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002804x509_parse_rsassa_pss_params:"a11a301806092a864886f70d010108300b0609608648016503040201":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002805
2806X509 RSASSA-PSS parameters ASN1 (good, explicit MGAlg = default)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002807depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA1
Hanno Becker32b48ea2019-06-03 09:48:09 +01002808x509_parse_rsassa_pss_params:"a116301406092a864886f70d010108300706052b0e03021a":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002809
2810X509 RSASSA-PSS parameters ASN1 (MGAlg wrong len #1)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002811x509_parse_rsassa_pss_params:"a11b301806092a864886f70d010108300b0609608648016503040201":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002812
2813X509 RSASSA-PSS parameters ASN1 (MGAlg wrong len #2)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002814depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002815x509_parse_rsassa_pss_params:"a11b301806092a864886f70d010108300b060960864801650304020100":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002816
2817X509 RSASSA-PSS parameters ASN1 (MGAlg AlgId wrong len #1)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002818x509_parse_rsassa_pss_params:"a11a301906092a864886f70d010108300b0609608648016503040201":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002819
2820X509 RSASSA-PSS parameters ASN1 (MGAlg OID != MGF1)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002821x509_parse_rsassa_pss_params:"a11a301806092a864886f70d010109300b0609608648016503040201":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_FEATURE_UNAVAILABLE + MBEDTLS_ERR_OID_NOT_FOUND
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002822
2823X509 RSASSA-PSS parameters ASN1 (MGAlg.params wrong tag)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002824x509_parse_rsassa_pss_params:"a11a301806092a864886f70d010108310b0609608648016503040201":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002825
2826X509 RSASSA-PSS parameters ASN1 (MGAlg.params wrong len #1a)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002827x509_parse_rsassa_pss_params:"a10f300d06092a864886f70d0101083000":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002828
2829X509 RSASSA-PSS parameters ASN1 (MGAlg.params wrong len #1b)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002830x509_parse_rsassa_pss_params:"a11b301906092a864886f70d010108300c0609608648016503040201":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002831
2832X509 RSASSA-PSS parameters ASN1 (MGAlg.params.alg not an OID)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002833x509_parse_rsassa_pss_params:"a11a301806092a864886f70d010108300b0709608648016503040201":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002834
2835X509 RSASSA-PSS parameters ASN1 (MGAlg.params.alg unknown OID)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002836x509_parse_rsassa_pss_params:"a11a301806092a864886f70d010108300b06096086480165030402ff":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_OID_NOT_FOUND
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002837
2838X509 RSASSA-PSS parameters ASN1 (MGAlg.params.params NULL)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002839depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002840x509_parse_rsassa_pss_params:"a11c301a06092a864886f70d010108300d06096086480165030402010500":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002841
2842X509 RSASSA-PSS parameters ASN1 (MGAlg.params.params wrong tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002843depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002844x509_parse_rsassa_pss_params:"a11c301a06092a864886f70d010108300d06096086480165030402013000":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002845
2846X509 RSASSA-PSS parameters ASN1 (MGAlg.params wrong len #1c)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002847x509_parse_rsassa_pss_params:"a11d301b06092a864886f70d010108300e06096086480165030402010500":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002848
2849X509 RSASSA-PSS parameters ASN1 (MGAlg.params wrong len #2)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002850depends_on:MBEDTLS_RSA_C:MBEDTLS_MD_CAN_SHA256
Hanno Becker32b48ea2019-06-03 09:48:09 +01002851x509_parse_rsassa_pss_params:"a11d301b06092a864886f70d010108300e0609608648016503040201050000":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA256:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002852
2853X509 RSASSA-PSS parameters ASN1 (good, saltLen = 94)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002854x509_parse_rsassa_pss_params:"a20302015e":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:94:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002855
2856X509 RSASSA-PSS parameters ASN1 (good, explicit saltLen = default)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002857x509_parse_rsassa_pss_params:"a203020114":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002858
2859X509 RSASSA-PSS parameters ASN1 (saltLen wrong len #1)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002860x509_parse_rsassa_pss_params:"a20402015e":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:94:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002861
2862X509 RSASSA-PSS parameters ASN1 (saltLen wrong len #2)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002863x509_parse_rsassa_pss_params:"a20402015e00":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:94:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002864
2865X509 RSASSA-PSS parameters ASN1 (saltLen not an int)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002866x509_parse_rsassa_pss_params:"a2023000":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:94:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002867
2868X509 RSASSA-PSS parameters ASN1 (good, explicit trailerField = default)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002869x509_parse_rsassa_pss_params:"a303020101":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:0
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002870
2871X509 RSASSA-PSS parameters ASN1 (trailerField wrong len #1)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002872x509_parse_rsassa_pss_params:"a304020101":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002873
2874X509 RSASSA-PSS parameters ASN1 (trailerField wrong len #2)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002875x509_parse_rsassa_pss_params:"a30402010100":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002876
2877X509 RSASSA-PSS parameters ASN1 (trailerField not an int)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002878x509_parse_rsassa_pss_params:"a3023000":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002879
2880X509 RSASSA-PSS parameters ASN1 (trailerField not 1)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002881x509_parse_rsassa_pss_params:"a303020102":MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE:MBEDTLS_MD_SHA1:MBEDTLS_MD_SHA1:20:MBEDTLS_ERR_X509_INVALID_ALG
Manuel Pégourié-Gonnard85403692014-06-06 14:48:38 +02002882
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002883X509 CSR ASN.1 (OK)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002884depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1:!MBEDTLS_X509_REMOVE_INFO
Przemek Stekiel685d4722023-01-13 10:16:40 +01002885mbedtls_x509_csr_parse:"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":"CSR version \: 1\nsubject name \: C=NL, O=PolarSSL, CN=localhost\nsigned using \: ECDSA with SHA1\nEC key size \: 256 bits\n\nkey usage \: Digital Signature, Non Repudiation, Key Encipherment\n":0
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002886
2887X509 CSR ASN.1 (bad first tag)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002888mbedtls_x509_csr_parse:"3100":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002889
2890X509 CSR ASN.1 (bad sequence: overlong)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002891mbedtls_x509_csr_parse:"3001":"":MBEDTLS_ERR_X509_INVALID_FORMAT
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002892
2893X509 CSR ASN.1 (total length mistmatch)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002894mbedtls_x509_csr_parse:"30010000":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002895
2896X509 CSR ASN.1 (bad CRI: not a sequence)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002897mbedtls_x509_csr_parse:"30023100":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002898
2899X509 CSR ASN.1 (bad CRI: overlong)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002900mbedtls_x509_csr_parse:"30023001":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002901
2902X509 CSR ASN.1 (bad CRI.Version: overlong)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002903mbedtls_x509_csr_parse:"30053002020100":"":MBEDTLS_ERR_X509_INVALID_VERSION + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002904
2905X509 CSR ASN.1 (bad CRI.Version: not v1)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002906mbedtls_x509_csr_parse:"30053003020101":"":MBEDTLS_ERR_X509_UNKNOWN_VERSION
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002907
2908X509 CSR ASN.1 (bad CRI.Name: not a sequence)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002909mbedtls_x509_csr_parse:"300730050201003100":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002910
2911X509 CSR ASN.1 (bad CRI.Name: overlong)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002912mbedtls_x509_csr_parse:"30083005020100300100":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002913
2914X509 CSR ASN.1 (bad CRI.Name payload: not a set)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02002915mbedtls_x509_csr_parse:"3009300702010030023000":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002916
2917X509 CSR ASN.1 (bad CRI.Name payload: overlong)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002918mbedtls_x509_csr_parse:"300a30080201003002310100":"":MBEDTLS_ERR_X509_INVALID_NAME + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002919
2920X509 CSR ASN.1 (bad SubjectPublicKeyInfo: missing)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002921mbedtls_x509_csr_parse:"30143012020100300d310b3009060355040613024e4c":"":MBEDTLS_ERR_PK_KEY_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002922
2923X509 CSR ASN.1 (bad SubjectPublicKeyInfo: not a sequence)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002924mbedtls_x509_csr_parse:"30163014020100300d310b3009060355040613024e4c3100":"":MBEDTLS_ERR_PK_KEY_INVALID_FORMAT + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002925
2926X509 CSR ASN.1 (bad SubjectPublicKeyInfo: overlong)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002927mbedtls_x509_csr_parse:"30173014020100300d310b3009060355040613024e4c300100":"":MBEDTLS_ERR_PK_KEY_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002928
2929X509 CSR ASN.1 (bad attributes: missing)
Valerio Settifcc69332023-01-31 14:31:32 +01002930depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002931mbedtls_x509_csr_parse:"3081973081940201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edff":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002932
2933X509 CSR ASN.1 (bad attributes: bad tag)
Valerio Settifcc69332023-01-31 14:31:32 +01002934depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002935mbedtls_x509_csr_parse:"3081993081960201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edff0500":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002936
2937X509 CSR ASN.1 (bad attributes: overlong)
Valerio Settifcc69332023-01-31 14:31:32 +01002938depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002939mbedtls_x509_csr_parse:"30819a3081960201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edffa00100":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002940
2941X509 CSR ASN.1 (bad sigAlg: missing)
Valerio Settifcc69332023-01-31 14:31:32 +01002942depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002943mbedtls_x509_csr_parse:"3081c23081bf0201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edffa029302706092a864886f70d01090e311a301830090603551d1304023000300b0603551d0f0404030205e0":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002944
2945X509 CSR ASN.1 (bad sigAlg: not a sequence)
Valerio Settifcc69332023-01-31 14:31:32 +01002946depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002947mbedtls_x509_csr_parse:"3081c43081bf0201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edffa029302706092a864886f70d01090e311a301830090603551d1304023000300b0603551d0f0404030205e03100":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002948
2949X509 CSR ASN.1 (bad sigAlg: overlong)
Valerio Settifcc69332023-01-31 14:31:32 +01002950depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002951mbedtls_x509_csr_parse:"3081c43081bf0201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edffa029302706092a864886f70d01090e311a301830090603551d1304023000300b0603551d0f0404030205e03001":"":MBEDTLS_ERR_X509_INVALID_ALG + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002952
2953X509 CSR ASN.1 (bad sigAlg: unknown)
Valerio Settifcc69332023-01-31 14:31:32 +01002954depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002955mbedtls_x509_csr_parse:"3081cd3081bf0201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edffa029302706092a864886f70d01090e311a301830090603551d1304023000300b0603551d0f0404030205e0300906072a8648ce3d04ff":"":MBEDTLS_ERR_X509_UNKNOWN_SIG_ALG
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002956
2957X509 CSR ASN.1 (bad sig: missing)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002958depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002959mbedtls_x509_csr_parse:"3081cd3081bf0201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edffa029302706092a864886f70d01090e311a301830090603551d1304023000300b0603551d0f0404030205e0300906072a8648ce3d0401":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002960
2961X509 CSR ASN.1 (bad sig: not a bit string)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002962depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002963mbedtls_x509_csr_parse:"3081cf3081bf0201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edffa029302706092a864886f70d01090e311a301830090603551d1304023000300b0603551d0f0404030205e0300906072a8648ce3d04010400":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002964
2965X509 CSR ASN.1 (bad sig: overlong)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002966depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002967mbedtls_x509_csr_parse:"3081cf3081bf0201003034310b3009060355040613024e4c3111300f060355040a1308506f6c617253534c31123010060355040313096c6f63616c686f73743059301306072a8648ce3d020106082a8648ce3d0301070342000437cc56d976091e5a723ec7592dff206eee7cf9069174d0ad14b5f768225962924ee500d82311ffea2fd2345d5d16bd8a88c26b770d55cd8a2a0efa01c8b4edffa029302706092a864886f70d01090e311a301830090603551d1304023000300b0603551d0f0404030205e0300906072a8648ce3d04010301":"":MBEDTLS_ERR_X509_INVALID_SIGNATURE + MBEDTLS_ERR_ASN1_OUT_OF_DATA
Manuel Pégourié-Gonnardd77cd5d2014-06-13 11:13:15 +02002968
2969X509 CSR ASN.1 (extra data after signature)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002970depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA1
Hanno Beckerd0d78d72019-02-12 10:20:42 +00002971mbedtls_x509_csr_parse:"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":"":MBEDTLS_ERR_X509_INVALID_FORMAT + MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Paul Bakker5a5fa922014-09-26 14:53:04 +02002972
Andres AGf00baff2017-03-07 10:57:34 +00002973X509 CSR ASN.1 (invalid version overflow)
Hanno Becker32b48ea2019-06-03 09:48:09 +01002974mbedtls_x509_csr_parse:"3008300602047fffffff":"":MBEDTLS_ERR_X509_UNKNOWN_VERSION
Andres AGf00baff2017-03-07 10:57:34 +00002975
Przemek Stekiel92cce3f2023-01-25 10:33:26 +01002976# Used test_csr_v3_all.csr.der as a base for malforming CSR extenstions/attributes
Przemek Stekiel16096852023-01-24 09:24:19 +01002977# Please see makefile for data_files to check malformation details (test_csr_v3_all_malformed_xxx.csr files)
2978X509 CSR ASN.1 (attributes: invalid sequence tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002979depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01002980mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_sequence_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01002981
2982X509 CSR ASN.1 (attributes: invalid attribute id)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002983depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01002984mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_id_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01002985
2986X509 CSR ASN.1 (attributes: not extension request)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002987depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01002988mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_extension_request.csr.der":"CSR version \: 1\nsubject name \: CN=etcd\nsigned using \: RSA with SHA-256\nRSA key size \: 1024 bits\n":0
Przemek Stekiel16096852023-01-24 09:24:19 +01002989
2990X509 CSR ASN.1 (attributes: invalid extenstion request set tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002991depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01002992mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_extension_request_set_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01002993
2994X509 CSR ASN.1 (attributes: invalid extenstion request sequence tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002995depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01002996mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_extension_request_sequence_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01002997
2998X509 CSR ASN.1 (attributes: invalid len (len > data))
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01002999depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003000mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_len1.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_OUT_OF_DATA
Przemek Stekiel16096852023-01-24 09:24:19 +01003001
3002X509 CSR ASN.1 (attributes: invalid len (len < data))
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003003depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003004mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_len2.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Przemek Stekiel16096852023-01-24 09:24:19 +01003005
3006X509 CSR ASN.1 (attributes: extension request invalid len (len > data))
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003007depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003008mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_extension_request_sequence_len1.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_OUT_OF_DATA
Przemek Stekiel16096852023-01-24 09:24:19 +01003009
3010X509 CSR ASN.1 (attributes: extension request invalid len (len < data))
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003011depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003012mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_attributes_extension_request_sequence_len2.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_OUT_OF_DATA
Przemek Stekiel16096852023-01-24 09:24:19 +01003013
3014X509 CSR ASN.1 (extensions: invalid sequence tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003015depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003016mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extensions_sequence_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01003017
3018X509 CSR ASN.1 (extensions: invalid extension id tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003019depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003020mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extension_id_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01003021
3022X509 CSR ASN.1 (extensions: invalid extension data tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003023depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003024mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extension_data_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01003025
3026X509 CSR ASN.1 (extensions: invalid extension data len (len > data))
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003027depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003028mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extension_data_len1.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_OUT_OF_DATA
Przemek Stekiel16096852023-01-24 09:24:19 +01003029
3030X509 CSR ASN.1 (extensions: invalid extension data len (len < data))
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003031depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003032mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extension_data_len2.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_LENGTH_MISMATCH
Przemek Stekiel16096852023-01-24 09:24:19 +01003033
3034X509 CSR ASN.1 (extensions: invalid extension key usage bitstream tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003035depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003036mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extension_key_usage_bitstream_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01003037
3038X509 CSR ASN.1 (extensions: invalid extension subject alt name sequence tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003039depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003040mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extension_subject_alt_name_sequence_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01003041
3042X509 CSR ASN.1 (extensions: invalid extension ns cert bitstream tag)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003043depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003044mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extension_ns_cert_bitstream_tag.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG
Przemek Stekiel16096852023-01-24 09:24:19 +01003045
3046X509 CSR ASN.1 (extensions: duplicated extension)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003047depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003048mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_duplicated_extension.csr.der":"":MBEDTLS_ERR_X509_INVALID_EXTENSIONS+MBEDTLS_ERR_ASN1_INVALID_DATA
Przemek Stekiel16096852023-01-24 09:24:19 +01003049
3050X509 CSR ASN.1 (extensions: invalid extension type data)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003051depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Przemek Stekield7992df2023-01-25 16:19:50 +01003052mbedtls_x509_csr_parse_file:"data_files/test_csr_v3_all_malformed_extension_type_oid.csr.der":"CSR version \: 1\nsubject name \: CN=etcd\nsigned using \: RSA with SHA-256\nRSA key size \: 1024 bits\n\ncert. type \: SSL Client\nkey usage \: CRL Sign\n":0
Przemek Stekiel16096852023-01-24 09:24:19 +01003053
Paul Bakker5a5fa922014-09-26 14:53:04 +02003054X509 File parse (no issues)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003055depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Gilles Peskine1e5fec62023-04-13 18:13:48 +02003056mbedtls_x509_crt_parse_file:"data_files/server7_int-ca.crt":0:2
Paul Bakker5a5fa922014-09-26 14:53:04 +02003057
3058X509 File parse (extra space in one certificate)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003059depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Gilles Peskine1e5fec62023-04-13 18:13:48 +02003060mbedtls_x509_crt_parse_file:"data_files/server7_pem_space.crt":1:1
Paul Bakker5a5fa922014-09-26 14:53:04 +02003061
3062X509 File parse (all certificates fail)
Valerio Settifcc69332023-01-31 14:31:32 +01003063depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_RSA_C
Gilles Peskine1e5fec62023-04-13 18:13:48 +02003064mbedtls_x509_crt_parse_file:"data_files/server7_all_space.crt":MBEDTLS_ERR_PEM_INVALID_DATA + MBEDTLS_ERR_BASE64_INVALID_CHARACTER:0
Manuel Pégourié-Gonnard052d10c2015-07-31 11:09:59 +02003065
3066X509 File parse (trailing spaces, OK)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003067depends_on:MBEDTLS_PK_CAN_ECDSA_SOME:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Gilles Peskine1e5fec62023-04-13 18:13:48 +02003068mbedtls_x509_crt_parse_file:"data_files/server7_trailing_space.crt":0:2
Andres AG4b76aec2016-09-23 13:16:02 +01003069
Paul Elliottca17ebf2020-11-24 17:30:18 +00003070X509 File parse (Algorithm Params Tag mismatch)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003071depends_on:MBEDTLS_MD_CAN_SHA256:MBEDTLS_RSA_C
Gilles Peskine1e5fec62023-04-13 18:13:48 +02003072mbedtls_x509_crt_parse_file:"data_files/cli-rsa-sha256-badalg.crt.der":MBEDTLS_ERR_X509_SIG_MISMATCH:0
Paul Elliottca17ebf2020-11-24 17:30:18 +00003073
Andres AG4b76aec2016-09-23 13:16:02 +01003074X509 Get time (UTC no issues)
3075depends_on:MBEDTLS_X509_USE_C
3076x509_get_time:MBEDTLS_ASN1_UTC_TIME:"500101000000Z":0:1950:1:1:0:0:0
3077
3078X509 Get time (Generalized Time no issues)
3079depends_on:MBEDTLS_X509_USE_C
3080x509_get_time:MBEDTLS_ASN1_GENERALIZED_TIME:"99991231235959Z":0:9999:12:31:23:59:59
3081
3082X509 Get time (UTC year without leap day)
3083depends_on:MBEDTLS_X509_USE_C
3084x509_get_time:MBEDTLS_ASN1_UTC_TIME:"490229121212Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3085
3086X509 Get time (UTC year with leap day)
3087depends_on:MBEDTLS_X509_USE_C
3088x509_get_time:MBEDTLS_ASN1_UTC_TIME:"000229121212Z":0:2000:2:29:12:12:12
3089
3090X509 Get time (UTC invalid day of month #1)
3091depends_on:MBEDTLS_X509_USE_C
3092x509_get_time:MBEDTLS_ASN1_UTC_TIME:"000132121212Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3093
3094X509 Get time (UTC invalid day of month #2)
3095depends_on:MBEDTLS_X509_USE_C
3096x509_get_time:MBEDTLS_ASN1_UTC_TIME:"001131121212Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3097
3098X509 Get time (UTC invalid hour)
3099depends_on:MBEDTLS_X509_USE_C
3100x509_get_time:MBEDTLS_ASN1_UTC_TIME:"001130241212Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3101
3102X509 Get time (UTC invalid min)
3103depends_on:MBEDTLS_X509_USE_C
3104x509_get_time:MBEDTLS_ASN1_UTC_TIME:"001130236012Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3105
3106X509 Get time (UTC invalid sec)
3107depends_on:MBEDTLS_X509_USE_C
3108x509_get_time:MBEDTLS_ASN1_UTC_TIME:"001130235960Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
Janos Follathea7054a2017-02-08 14:13:02 +00003109
3110X509 Get time (UTC without time zone)
3111depends_on:MBEDTLS_X509_USE_C
3112x509_get_time:MBEDTLS_ASN1_UTC_TIME:"000229121212":0:2000:2:29:12:12:12
3113
3114X509 Get time (UTC with invalid time zone #1)
3115depends_on:MBEDTLS_X509_USE_C
3116x509_get_time:MBEDTLS_ASN1_UTC_TIME:"000229121212J":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3117
3118X509 Get time (UTC with invalid time zone #2)
3119depends_on:MBEDTLS_X509_USE_C
3120x509_get_time:MBEDTLS_ASN1_UTC_TIME:"000229121212+0300":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3121
3122X509 Get time (Date with invalid tag)
3123depends_on:MBEDTLS_X509_USE_C
3124x509_get_time:MBEDTLS_ASN1_CONTEXT_SPECIFIC:"000229121212":MBEDTLS_ERR_X509_INVALID_DATE+MBEDTLS_ERR_ASN1_UNEXPECTED_TAG:0:0:0:0:0:0
3125
3126X509 Get time (UTC, truncated)
3127depends_on:MBEDTLS_X509_USE_C
3128x509_get_time:MBEDTLS_ASN1_UTC_TIME:"000229121":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3129
3130X509 Get time (Generalized Time, truncated)
3131depends_on:MBEDTLS_X509_USE_C
3132x509_get_time:MBEDTLS_ASN1_GENERALIZED_TIME:"20000229121":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3133
3134X509 Get time (UTC without seconds)
3135depends_on:MBEDTLS_X509_USE_C
3136x509_get_time:MBEDTLS_ASN1_UTC_TIME:"0002291212":MBEDTLS_ERR_X509_INVALID_DATE:2000:2:29:12:12:0
3137
3138X509 Get time (UTC without seconds and with invalid time zone #1)
3139depends_on:MBEDTLS_X509_USE_C
3140x509_get_time:MBEDTLS_ASN1_UTC_TIME:"0002291212J":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3141
3142X509 Get time (UTC without second and with invalid time zone #2)
3143depends_on:MBEDTLS_X509_USE_C
3144x509_get_time:MBEDTLS_ASN1_UTC_TIME:"0002291212+0300":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3145
3146X509 Get time (UTC invalid character in year)
3147depends_on:MBEDTLS_X509_USE_C
3148x509_get_time:MBEDTLS_ASN1_UTC_TIME:"0\1130231212Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3149
3150X509 Get time (UTC invalid character in month)
3151depends_on:MBEDTLS_X509_USE_C
3152x509_get_time:MBEDTLS_ASN1_UTC_TIME:"001%30231212Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3153
3154X509 Get time (UTC invalid character in day)
3155depends_on:MBEDTLS_X509_USE_C
3156x509_get_time:MBEDTLS_ASN1_UTC_TIME:"0011`0231212Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3157
3158X509 Get time (UTC invalid character in hour)
3159depends_on:MBEDTLS_X509_USE_C
3160x509_get_time:MBEDTLS_ASN1_UTC_TIME:"0011302h1212Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3161
3162X509 Get time (UTC invalid character in min)
3163depends_on:MBEDTLS_X509_USE_C
3164x509_get_time:MBEDTLS_ASN1_UTC_TIME:"00113023u012Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3165
3166X509 Get time (UTC invalid character in sec)
3167depends_on:MBEDTLS_X509_USE_C
3168x509_get_time:MBEDTLS_ASN1_UTC_TIME:"0011302359n0Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3169
Andres Amaya Garcia60100d02017-10-06 17:05:24 +01003170X509 Get time (Generalized Time, year multiple of 100 but not 400 is not a leap year)
Andres Amaya Garcia735b37e2016-11-21 15:38:02 +00003171depends_on:MBEDTLS_X509_USE_C
3172x509_get_time:MBEDTLS_ASN1_GENERALIZED_TIME:"19000229000000Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
3173
Andres Amaya Garcia60100d02017-10-06 17:05:24 +01003174X509 Get time (Generalized Time, year multiple of 4 but not 100 is a leap year)
Andres Amaya Garcia735b37e2016-11-21 15:38:02 +00003175depends_on:MBEDTLS_X509_USE_C
3176x509_get_time:MBEDTLS_ASN1_GENERALIZED_TIME:"19920229000000Z":0:1992:2:29:0:0:0
3177
Andres Amaya Garcia60100d02017-10-06 17:05:24 +01003178X509 Get time (Generalized Time, year multiple of 400 is a leap year)
Andres Amaya Garcia735b37e2016-11-21 15:38:02 +00003179depends_on:MBEDTLS_X509_USE_C
3180x509_get_time:MBEDTLS_ASN1_GENERALIZED_TIME:"20000229000000Z":0:2000:2:29:0:0:0
3181
3182X509 Get time (Generalized Time invalid leap year not multiple of 4, 100 or 400)
3183depends_on:MBEDTLS_X509_USE_C
3184x509_get_time:MBEDTLS_ASN1_GENERALIZED_TIME:"19910229000000Z":MBEDTLS_ERR_X509_INVALID_DATE:0:0:0:0:0:0
Manuel Pégourié-Gonnardda19f4c2018-06-12 12:40:54 +02003185
Hanno Becker2389d162019-02-14 12:52:47 +00003186X509 CRT verify restart: trusted EE, max_ops=0 (disabled)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003187depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnardd19a41d2017-07-14 11:05:59 +02003188x509_verify_restart:"data_files/server5-selfsigned.crt":"data_files/server5-selfsigned.crt":0:0:0:0:0
3189
Hanno Becker2389d162019-02-14 12:52:47 +00003190X509 CRT verify restart: trusted EE, max_ops=1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003191depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003192x509_verify_restart:"data_files/server5-selfsigned.crt":"data_files/server5-selfsigned.crt":0:0:1:0:0
3193
Hanno Becker2389d162019-02-14 12:52:47 +00003194X509 CRT verify restart: no intermediate, max_ops=0 (disabled)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003195depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnardd19a41d2017-07-14 11:05:59 +02003196x509_verify_restart:"data_files/server5.crt":"data_files/test-ca2.crt":0:0:0:0:0
3197
Hanno Becker2389d162019-02-14 12:52:47 +00003198X509 CRT verify restart: no intermediate, max_ops=1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003199depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003200x509_verify_restart:"data_files/server5.crt":"data_files/test-ca2.crt":0:0:1:100:10000
3201
Hanno Becker2389d162019-02-14 12:52:47 +00003202X509 CRT verify restart: no intermediate, max_ops=40000
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003203depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003204x509_verify_restart:"data_files/server5.crt":"data_files/test-ca2.crt":0:0:40000:0:0
3205
Hanno Becker2389d162019-02-14 12:52:47 +00003206X509 CRT verify restart: no intermediate, max_ops=500
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003207depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003208x509_verify_restart:"data_files/server5.crt":"data_files/test-ca2.crt":0:0:500:20:80
3209
Hanno Becker2389d162019-02-14 12:52:47 +00003210X509 CRT verify restart: no intermediate, badsign, max_ops=0 (disabled)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003211depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnardd19a41d2017-07-14 11:05:59 +02003212x509_verify_restart:"data_files/server5-badsign.crt":"data_files/test-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:0:0:0
3213
Hanno Becker2389d162019-02-14 12:52:47 +00003214X509 CRT verify restart: no intermediate, badsign, max_ops=1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003215depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003216x509_verify_restart:"data_files/server5-badsign.crt":"data_files/test-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:1:100:10000
3217
Hanno Becker2389d162019-02-14 12:52:47 +00003218X509 CRT verify restart: no intermediate, badsign, max_ops=40000
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003219depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003220x509_verify_restart:"data_files/server5-badsign.crt":"data_files/test-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:40000:0:0
3221
Hanno Becker2389d162019-02-14 12:52:47 +00003222X509 CRT verify restart: no intermediate, badsign, max_ops=500
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003223depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003224x509_verify_restart:"data_files/server5-badsign.crt":"data_files/test-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:500:20:80
3225
Hanno Becker2389d162019-02-14 12:52:47 +00003226X509 CRT verify restart: one int, max_ops=0 (disabled)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003227depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnardd19a41d2017-07-14 11:05:59 +02003228x509_verify_restart:"data_files/server10_int3_int-ca2.crt":"data_files/test-int-ca2.crt":0:0:0:0:0
3229
Hanno Becker2389d162019-02-14 12:52:47 +00003230X509 CRT verify restart: one int, max_ops=1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003231depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003232x509_verify_restart:"data_files/server10_int3_int-ca2.crt":"data_files/test-int-ca2.crt":0:0:1:100:10000
3233
Hanno Becker2389d162019-02-14 12:52:47 +00003234X509 CRT verify restart: one int, max_ops=30000
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003235depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003236x509_verify_restart:"data_files/server10_int3_int-ca2.crt":"data_files/test-int-ca2.crt":0:0:30000:0:0
3237
Hanno Becker2389d162019-02-14 12:52:47 +00003238X509 CRT verify restart: one int, max_ops=500
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003239depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003240x509_verify_restart:"data_files/server10_int3_int-ca2.crt":"data_files/test-int-ca2.crt":0:0:500:25:100
3241
Hanno Becker2389d162019-02-14 12:52:47 +00003242X509 CRT verify restart: one int, EE badsign, max_ops=0 (disabled)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003243depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnardd19a41d2017-07-14 11:05:59 +02003244x509_verify_restart:"data_files/server10-bs_int3.pem":"data_files/test-int-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:0:0:0
3245
Hanno Becker2389d162019-02-14 12:52:47 +00003246X509 CRT verify restart: one int, EE badsign, max_ops=1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003247depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003248x509_verify_restart:"data_files/server10-bs_int3.pem":"data_files/test-int-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:1:100:10000
3249
Hanno Becker2389d162019-02-14 12:52:47 +00003250X509 CRT verify restart: one int, EE badsign, max_ops=30000
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003251depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003252x509_verify_restart:"data_files/server10-bs_int3.pem":"data_files/test-int-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:30000:0:0
3253
Hanno Becker2389d162019-02-14 12:52:47 +00003254X509 CRT verify restart: one int, EE badsign, max_ops=500
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003255depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003256x509_verify_restart:"data_files/server10-bs_int3.pem":"data_files/test-int-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:500:25:100
3257
Hanno Becker2389d162019-02-14 12:52:47 +00003258X509 CRT verify restart: one int, int badsign, max_ops=0 (disabled)
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003259depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnardd19a41d2017-07-14 11:05:59 +02003260x509_verify_restart:"data_files/server10_int3-bs.pem":"data_files/test-int-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:0:0:0
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003261
Hanno Becker2389d162019-02-14 12:52:47 +00003262X509 CRT verify restart: one int, int badsign, max_ops=1
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003263depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003264x509_verify_restart:"data_files/server10_int3-bs.pem":"data_files/test-int-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:1:100:10000
3265
Hanno Becker2389d162019-02-14 12:52:47 +00003266X509 CRT verify restart: one int, int badsign, max_ops=30000
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003267depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003268x509_verify_restart:"data_files/server10_int3-bs.pem":"data_files/test-int-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:30000:0:0
3269
Hanno Becker2389d162019-02-14 12:52:47 +00003270X509 CRT verify restart: one int, int badsign, max_ops=500
Manuel Pégourié-Gonnarda9464892023-03-17 12:08:50 +01003271depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_MD_CAN_SHA256:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_ECP_DP_SECP384R1_ENABLED:MBEDTLS_RSA_C
Manuel Pégourié-Gonnard8b590492017-08-14 18:04:19 +02003272x509_verify_restart:"data_files/server10_int3-bs.pem":"data_files/test-int-ca2.crt":MBEDTLS_ERR_X509_CERT_VERIFY_FAILED:MBEDTLS_X509_BADCERT_NOT_TRUSTED:500:25:100
Thomas Daubney3ff4fc62022-05-31 14:17:24 +01003273
3274X509 ext types accessor: ext type present
Thomas Daubney5c9c2ce2022-06-06 16:36:43 +01003275depends_on:MBEDTLS_X509_CRT_PARSE_C
Thomas Daubney3ff4fc62022-05-31 14:17:24 +01003276x509_accessor_ext_types:MBEDTLS_X509_EXT_KEY_USAGE:MBEDTLS_X509_EXT_KEY_USAGE
3277
3278X509 ext types accessor: ext type not present
Thomas Daubney5c9c2ce2022-06-06 16:36:43 +01003279depends_on:MBEDTLS_X509_CRT_PARSE_C
Thomas Daubney3ff4fc62022-05-31 14:17:24 +01003280x509_accessor_ext_types:MBEDTLS_X509_EXT_KEY_USAGE:MBEDTLS_X509_EXT_SUBJECT_ALT_NAME