TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/development / . / tests / src / certs.c
blob: d1af5b2aa43332d2582954eba08797561c628ac7 [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]1/*
2 * X.509 test certificates
3 *
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]4 * Copyright The Mbed TLS Contributors
Dave Rodgman16799db2023-11-02 19:47:20 +0000[diff] [blame]5 * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]6 */
7
Gilles Peskinedb09ef62020-06-03 01:43:33 +0200[diff] [blame]8#include "common.h"
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]9
Mateusz Starzyk1aec6462021-02-08 15:34:42 +0100[diff] [blame]10#include <test/certs.h>
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]11
Andrzej Kurek25f27152022-08-17 16:09:31 -0400[diff] [blame]12#include "mbedtls/build_info.h"
13
Valerio Setti16f02e02023-02-13 11:09:40 +0100[diff] [blame]14#include "mbedtls/pk.h"
Valerio Settid928aeb2023-02-08 14:46:15 +0100[diff] [blame]15
Ronald Cron99226e92025-02-14 15:43:22 +0100[diff] [blame]16#include "test/test_certs.h"
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]17
18/*
19 *
20 * Test certificates and keys as C variables
21 *
22 */
23
24/*
25 * CA
26 */
27
28const char mbedtls_test_ca_crt_ec_pem[] = TEST_CA_CRT_EC_PEM;
29const char mbedtls_test_ca_key_ec_pem[] = TEST_CA_KEY_EC_PEM;
30const char mbedtls_test_ca_pwd_ec_pem[] = TEST_CA_PWD_EC_PEM;
31const char mbedtls_test_ca_key_rsa_pem[] = TEST_CA_KEY_RSA_PEM;
32const char mbedtls_test_ca_pwd_rsa_pem[] = TEST_CA_PWD_RSA_PEM;
33const char mbedtls_test_ca_crt_rsa_sha1_pem[] = TEST_CA_CRT_RSA_SHA1_PEM;
34const char mbedtls_test_ca_crt_rsa_sha256_pem[] = TEST_CA_CRT_RSA_SHA256_PEM;
35
36const unsigned char mbedtls_test_ca_crt_ec_der[] = TEST_CA_CRT_EC_DER;
37const unsigned char mbedtls_test_ca_key_ec_der[] = TEST_CA_KEY_EC_DER;
38const unsigned char mbedtls_test_ca_key_rsa_der[] = TEST_CA_KEY_RSA_DER;
39const unsigned char mbedtls_test_ca_crt_rsa_sha1_der[] =
40 TEST_CA_CRT_RSA_SHA1_DER;
41const unsigned char mbedtls_test_ca_crt_rsa_sha256_der[] =
42 TEST_CA_CRT_RSA_SHA256_DER;
43
44const size_t mbedtls_test_ca_crt_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]45 sizeof(mbedtls_test_ca_crt_ec_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]46const size_t mbedtls_test_ca_key_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]47 sizeof(mbedtls_test_ca_key_ec_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]48const size_t mbedtls_test_ca_pwd_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]49 sizeof(mbedtls_test_ca_pwd_ec_pem) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]50const size_t mbedtls_test_ca_key_rsa_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]51 sizeof(mbedtls_test_ca_key_rsa_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]52const size_t mbedtls_test_ca_pwd_rsa_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]53 sizeof(mbedtls_test_ca_pwd_rsa_pem) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]54const size_t mbedtls_test_ca_crt_rsa_sha1_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]55 sizeof(mbedtls_test_ca_crt_rsa_sha1_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]56const size_t mbedtls_test_ca_crt_rsa_sha256_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]57 sizeof(mbedtls_test_ca_crt_rsa_sha256_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]58
59const size_t mbedtls_test_ca_crt_ec_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]60 sizeof(mbedtls_test_ca_crt_ec_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]61const size_t mbedtls_test_ca_key_ec_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]62 sizeof(mbedtls_test_ca_key_ec_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]63const size_t mbedtls_test_ca_pwd_ec_der_len = 0;
64const size_t mbedtls_test_ca_key_rsa_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]65 sizeof(mbedtls_test_ca_key_rsa_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]66const size_t mbedtls_test_ca_pwd_rsa_der_len = 0;
67const size_t mbedtls_test_ca_crt_rsa_sha1_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]68 sizeof(mbedtls_test_ca_crt_rsa_sha1_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]69const size_t mbedtls_test_ca_crt_rsa_sha256_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]70 sizeof(mbedtls_test_ca_crt_rsa_sha256_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]71
72/*
73 * Server
74 */
75
76const char mbedtls_test_srv_crt_ec_pem[] = TEST_SRV_CRT_EC_PEM;
77const char mbedtls_test_srv_key_ec_pem[] = TEST_SRV_KEY_EC_PEM;
78const char mbedtls_test_srv_pwd_ec_pem[] = "";
79const char mbedtls_test_srv_key_rsa_pem[] = TEST_SRV_KEY_RSA_PEM;
80const char mbedtls_test_srv_pwd_rsa_pem[] = "";
81const char mbedtls_test_srv_crt_rsa_sha1_pem[] = TEST_SRV_CRT_RSA_SHA1_PEM;
82const char mbedtls_test_srv_crt_rsa_sha256_pem[] = TEST_SRV_CRT_RSA_SHA256_PEM;
83
84const unsigned char mbedtls_test_srv_crt_ec_der[] = TEST_SRV_CRT_EC_DER;
85const unsigned char mbedtls_test_srv_key_ec_der[] = TEST_SRV_KEY_EC_DER;
86const unsigned char mbedtls_test_srv_key_rsa_der[] = TEST_SRV_KEY_RSA_DER;
87const unsigned char mbedtls_test_srv_crt_rsa_sha1_der[] =
88 TEST_SRV_CRT_RSA_SHA1_DER;
89const unsigned char mbedtls_test_srv_crt_rsa_sha256_der[] =
90 TEST_SRV_CRT_RSA_SHA256_DER;
91
92const size_t mbedtls_test_srv_crt_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]93 sizeof(mbedtls_test_srv_crt_ec_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]94const size_t mbedtls_test_srv_key_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]95 sizeof(mbedtls_test_srv_key_ec_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]96const size_t mbedtls_test_srv_pwd_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]97 sizeof(mbedtls_test_srv_pwd_ec_pem) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]98const size_t mbedtls_test_srv_key_rsa_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]99 sizeof(mbedtls_test_srv_key_rsa_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]100const size_t mbedtls_test_srv_pwd_rsa_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]101 sizeof(mbedtls_test_srv_pwd_rsa_pem) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]102const size_t mbedtls_test_srv_crt_rsa_sha1_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]103 sizeof(mbedtls_test_srv_crt_rsa_sha1_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]104const size_t mbedtls_test_srv_crt_rsa_sha256_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]105 sizeof(mbedtls_test_srv_crt_rsa_sha256_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]106
107const size_t mbedtls_test_srv_crt_ec_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]108 sizeof(mbedtls_test_srv_crt_ec_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]109const size_t mbedtls_test_srv_key_ec_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]110 sizeof(mbedtls_test_srv_key_ec_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]111const size_t mbedtls_test_srv_pwd_ec_der_len = 0;
112const size_t mbedtls_test_srv_key_rsa_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]113 sizeof(mbedtls_test_srv_key_rsa_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]114const size_t mbedtls_test_srv_pwd_rsa_der_len = 0;
115const size_t mbedtls_test_srv_crt_rsa_sha1_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]116 sizeof(mbedtls_test_srv_crt_rsa_sha1_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]117const size_t mbedtls_test_srv_crt_rsa_sha256_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]118 sizeof(mbedtls_test_srv_crt_rsa_sha256_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]119
120/*
121 * Client
122 */
123
124const char mbedtls_test_cli_crt_ec_pem[] = TEST_CLI_CRT_EC_PEM;
125const char mbedtls_test_cli_key_ec_pem[] = TEST_CLI_KEY_EC_PEM;
126const char mbedtls_test_cli_pwd_ec_pem[] = "";
127const char mbedtls_test_cli_key_rsa_pem[] = TEST_CLI_KEY_RSA_PEM;
128const char mbedtls_test_cli_pwd_rsa_pem[] = "";
129const char mbedtls_test_cli_crt_rsa_pem[] = TEST_CLI_CRT_RSA_PEM;
130
131const unsigned char mbedtls_test_cli_crt_ec_der[] = TEST_CLI_CRT_EC_DER;
132const unsigned char mbedtls_test_cli_key_ec_der[] = TEST_CLI_KEY_EC_DER;
133const unsigned char mbedtls_test_cli_key_rsa_der[] = TEST_CLI_KEY_RSA_DER;
134const unsigned char mbedtls_test_cli_crt_rsa_der[] = TEST_CLI_CRT_RSA_DER;
135
136const size_t mbedtls_test_cli_crt_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]137 sizeof(mbedtls_test_cli_crt_ec_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]138const size_t mbedtls_test_cli_key_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]139 sizeof(mbedtls_test_cli_key_ec_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]140const size_t mbedtls_test_cli_pwd_ec_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]141 sizeof(mbedtls_test_cli_pwd_ec_pem) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]142const size_t mbedtls_test_cli_key_rsa_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]143 sizeof(mbedtls_test_cli_key_rsa_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]144const size_t mbedtls_test_cli_pwd_rsa_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]145 sizeof(mbedtls_test_cli_pwd_rsa_pem) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]146const size_t mbedtls_test_cli_crt_rsa_pem_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]147 sizeof(mbedtls_test_cli_crt_rsa_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]148
149const size_t mbedtls_test_cli_crt_ec_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]150 sizeof(mbedtls_test_cli_crt_ec_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]151const size_t mbedtls_test_cli_key_ec_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]152 sizeof(mbedtls_test_cli_key_ec_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]153const size_t mbedtls_test_cli_key_rsa_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]154 sizeof(mbedtls_test_cli_key_rsa_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]155const size_t mbedtls_test_cli_crt_rsa_der_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]156 sizeof(mbedtls_test_cli_crt_rsa_der);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]157
158/*
159 *
160 * Definitions of test CRTs without specification of all parameters, choosing
161 * them automatically according to the config. For example, mbedtls_test_ca_crt
162 * is one of mbedtls_test_ca_crt_{rsa|ec}_{sha1|sha256}_{pem|der}.
163 *
164 */
165
166/*
167 * Dispatch between PEM and DER according to config
168 */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]169
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]170#if defined(MBEDTLS_PEM_PARSE_C)
Manuel Pégourié-Gonnard641de712013-09-25 13:23:33 +0200[diff] [blame]171
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]172/* PEM encoded test CA certificates and keys */
173
174#define TEST_CA_KEY_RSA TEST_CA_KEY_RSA_PEM
175#define TEST_CA_PWD_RSA TEST_CA_PWD_RSA_PEM
176#define TEST_CA_CRT_RSA_SHA256 TEST_CA_CRT_RSA_SHA256_PEM
177#define TEST_CA_CRT_RSA_SHA1 TEST_CA_CRT_RSA_SHA1_PEM
178#define TEST_CA_KEY_EC TEST_CA_KEY_EC_PEM
179#define TEST_CA_PWD_EC TEST_CA_PWD_EC_PEM
180#define TEST_CA_CRT_EC TEST_CA_CRT_EC_PEM
181
182/* PEM encoded test server certificates and keys */
183
184#define TEST_SRV_KEY_RSA TEST_SRV_KEY_RSA_PEM
185#define TEST_SRV_PWD_RSA ""
186#define TEST_SRV_CRT_RSA_SHA256 TEST_SRV_CRT_RSA_SHA256_PEM
187#define TEST_SRV_CRT_RSA_SHA1 TEST_SRV_CRT_RSA_SHA1_PEM
188#define TEST_SRV_KEY_EC TEST_SRV_KEY_EC_PEM
189#define TEST_SRV_PWD_EC ""
190#define TEST_SRV_CRT_EC TEST_SRV_CRT_EC_PEM
191
192/* PEM encoded test client certificates and keys */
193
194#define TEST_CLI_KEY_RSA TEST_CLI_KEY_RSA_PEM
195#define TEST_CLI_PWD_RSA ""
196#define TEST_CLI_CRT_RSA TEST_CLI_CRT_RSA_PEM
197#define TEST_CLI_KEY_EC TEST_CLI_KEY_EC_PEM
198#define TEST_CLI_PWD_EC ""
199#define TEST_CLI_CRT_EC TEST_CLI_CRT_EC_PEM
200
201#else /* MBEDTLS_PEM_PARSE_C */
202
203/* DER encoded test CA certificates and keys */
204
205#define TEST_CA_KEY_RSA TEST_CA_KEY_RSA_DER
206#define TEST_CA_PWD_RSA ""
207#define TEST_CA_CRT_RSA_SHA256 TEST_CA_CRT_RSA_SHA256_DER
208#define TEST_CA_CRT_RSA_SHA1 TEST_CA_CRT_RSA_SHA1_DER
209#define TEST_CA_KEY_EC TEST_CA_KEY_EC_DER
210#define TEST_CA_PWD_EC ""
211#define TEST_CA_CRT_EC TEST_CA_CRT_EC_DER
212
213/* DER encoded test server certificates and keys */
214
215#define TEST_SRV_KEY_RSA TEST_SRV_KEY_RSA_DER
216#define TEST_SRV_PWD_RSA ""
217#define TEST_SRV_CRT_RSA_SHA256 TEST_SRV_CRT_RSA_SHA256_DER
218#define TEST_SRV_CRT_RSA_SHA1 TEST_SRV_CRT_RSA_SHA1_DER
219#define TEST_SRV_KEY_EC TEST_SRV_KEY_EC_DER
220#define TEST_SRV_PWD_EC ""
221#define TEST_SRV_CRT_EC TEST_SRV_CRT_EC_DER
222
223/* DER encoded test client certificates and keys */
224
225#define TEST_CLI_KEY_RSA TEST_CLI_KEY_RSA_DER
226#define TEST_CLI_PWD_RSA ""
227#define TEST_CLI_CRT_RSA TEST_CLI_CRT_RSA_DER
228#define TEST_CLI_KEY_EC TEST_CLI_KEY_EC_DER
229#define TEST_CLI_PWD_EC ""
230#define TEST_CLI_CRT_EC TEST_CLI_CRT_EC_DER
231
232#endif /* MBEDTLS_PEM_PARSE_C */
233
234const char mbedtls_test_ca_key_rsa[] = TEST_CA_KEY_RSA;
235const char mbedtls_test_ca_pwd_rsa[] = TEST_CA_PWD_RSA;
236const char mbedtls_test_ca_crt_rsa_sha256[] = TEST_CA_CRT_RSA_SHA256;
237const char mbedtls_test_ca_crt_rsa_sha1[] = TEST_CA_CRT_RSA_SHA1;
238const char mbedtls_test_ca_key_ec[] = TEST_CA_KEY_EC;
239const char mbedtls_test_ca_pwd_ec[] = TEST_CA_PWD_EC;
240const char mbedtls_test_ca_crt_ec[] = TEST_CA_CRT_EC;
241
242const char mbedtls_test_srv_key_rsa[] = TEST_SRV_KEY_RSA;
243const char mbedtls_test_srv_pwd_rsa[] = TEST_SRV_PWD_RSA;
244const char mbedtls_test_srv_crt_rsa_sha256[] = TEST_SRV_CRT_RSA_SHA256;
245const char mbedtls_test_srv_crt_rsa_sha1[] = TEST_SRV_CRT_RSA_SHA1;
246const char mbedtls_test_srv_key_ec[] = TEST_SRV_KEY_EC;
247const char mbedtls_test_srv_pwd_ec[] = TEST_SRV_PWD_EC;
248const char mbedtls_test_srv_crt_ec[] = TEST_SRV_CRT_EC;
249
250const char mbedtls_test_cli_key_rsa[] = TEST_CLI_KEY_RSA;
251const char mbedtls_test_cli_pwd_rsa[] = TEST_CLI_PWD_RSA;
252const char mbedtls_test_cli_crt_rsa[] = TEST_CLI_CRT_RSA;
253const char mbedtls_test_cli_key_ec[] = TEST_CLI_KEY_EC;
254const char mbedtls_test_cli_pwd_ec[] = TEST_CLI_PWD_EC;
255const char mbedtls_test_cli_crt_ec[] = TEST_CLI_CRT_EC;
256
257const size_t mbedtls_test_ca_key_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]258 sizeof(mbedtls_test_ca_key_rsa);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]259const size_t mbedtls_test_ca_pwd_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]260 sizeof(mbedtls_test_ca_pwd_rsa) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]261const size_t mbedtls_test_ca_crt_rsa_sha256_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]262 sizeof(mbedtls_test_ca_crt_rsa_sha256);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]263const size_t mbedtls_test_ca_crt_rsa_sha1_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]264 sizeof(mbedtls_test_ca_crt_rsa_sha1);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]265const size_t mbedtls_test_ca_key_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]266 sizeof(mbedtls_test_ca_key_ec);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]267const size_t mbedtls_test_ca_pwd_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]268 sizeof(mbedtls_test_ca_pwd_ec) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]269const size_t mbedtls_test_ca_crt_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]270 sizeof(mbedtls_test_ca_crt_ec);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]271
272const size_t mbedtls_test_srv_key_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]273 sizeof(mbedtls_test_srv_key_rsa);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]274const size_t mbedtls_test_srv_pwd_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]275 sizeof(mbedtls_test_srv_pwd_rsa) -1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]276const size_t mbedtls_test_srv_crt_rsa_sha256_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]277 sizeof(mbedtls_test_srv_crt_rsa_sha256);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]278const size_t mbedtls_test_srv_crt_rsa_sha1_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]279 sizeof(mbedtls_test_srv_crt_rsa_sha1);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]280const size_t mbedtls_test_srv_key_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]281 sizeof(mbedtls_test_srv_key_ec);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]282const size_t mbedtls_test_srv_pwd_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]283 sizeof(mbedtls_test_srv_pwd_ec) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]284const size_t mbedtls_test_srv_crt_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]285 sizeof(mbedtls_test_srv_crt_ec);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]286
287const size_t mbedtls_test_cli_key_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]288 sizeof(mbedtls_test_cli_key_rsa);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]289const size_t mbedtls_test_cli_pwd_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]290 sizeof(mbedtls_test_cli_pwd_rsa) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]291const size_t mbedtls_test_cli_crt_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]292 sizeof(mbedtls_test_cli_crt_rsa);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]293const size_t mbedtls_test_cli_key_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]294 sizeof(mbedtls_test_cli_key_ec);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]295const size_t mbedtls_test_cli_pwd_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]296 sizeof(mbedtls_test_cli_pwd_ec) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]297const size_t mbedtls_test_cli_crt_ec_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]298 sizeof(mbedtls_test_cli_crt_ec);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]299
300/*
301 * Dispatch between SHA-1 and SHA-256
302 */
303
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]304#if defined(PSA_WANT_ALG_SHA_256)
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]305#define TEST_CA_CRT_RSA TEST_CA_CRT_RSA_SHA256
306#define TEST_SRV_CRT_RSA TEST_SRV_CRT_RSA_SHA256
307#else
308#define TEST_CA_CRT_RSA TEST_CA_CRT_RSA_SHA1
309#define TEST_SRV_CRT_RSA TEST_SRV_CRT_RSA_SHA1
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]310#endif /* PSA_WANT_ALG_SHA_256 */
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]311
312const char mbedtls_test_ca_crt_rsa[] = TEST_CA_CRT_RSA;
313const char mbedtls_test_srv_crt_rsa[] = TEST_SRV_CRT_RSA;
314
315const size_t mbedtls_test_ca_crt_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]316 sizeof(mbedtls_test_ca_crt_rsa);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]317const size_t mbedtls_test_srv_crt_rsa_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]318 sizeof(mbedtls_test_srv_crt_rsa);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]319
320/*
321 * Dispatch between RSA and EC
322 */
323
324#if defined(MBEDTLS_RSA_C)
325
326#define TEST_CA_KEY TEST_CA_KEY_RSA
327#define TEST_CA_PWD TEST_CA_PWD_RSA
328#define TEST_CA_CRT TEST_CA_CRT_RSA
329
330#define TEST_SRV_KEY TEST_SRV_KEY_RSA
331#define TEST_SRV_PWD TEST_SRV_PWD_RSA
332#define TEST_SRV_CRT TEST_SRV_CRT_RSA
333
334#define TEST_CLI_KEY TEST_CLI_KEY_RSA
335#define TEST_CLI_PWD TEST_CLI_PWD_RSA
336#define TEST_CLI_CRT TEST_CLI_CRT_RSA
337
338#else /* no RSA, so assume ECDSA */
339
340#define TEST_CA_KEY TEST_CA_KEY_EC
341#define TEST_CA_PWD TEST_CA_PWD_EC
342#define TEST_CA_CRT TEST_CA_CRT_EC
343
344#define TEST_SRV_KEY TEST_SRV_KEY_EC
345#define TEST_SRV_PWD TEST_SRV_PWD_EC
346#define TEST_SRV_CRT TEST_SRV_CRT_EC
347
348#define TEST_CLI_KEY TEST_CLI_KEY_EC
349#define TEST_CLI_PWD TEST_CLI_PWD_EC
350#define TEST_CLI_CRT TEST_CLI_CRT_EC
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]351#endif /* MBEDTLS_RSA_C */
352
353/* API stability forces us to declare
354 * mbedtls_test_{ca|srv|cli}_{key|pwd|crt}
355 * as pointers. */
356static const char test_ca_key[] = TEST_CA_KEY;
357static const char test_ca_pwd[] = TEST_CA_PWD;
358static const char test_ca_crt[] = TEST_CA_CRT;
359
360static const char test_srv_key[] = TEST_SRV_KEY;
361static const char test_srv_pwd[] = TEST_SRV_PWD;
362static const char test_srv_crt[] = TEST_SRV_CRT;
363
364static const char test_cli_key[] = TEST_CLI_KEY;
365static const char test_cli_pwd[] = TEST_CLI_PWD;
366static const char test_cli_crt[] = TEST_CLI_CRT;
367
368const char *mbedtls_test_ca_key = test_ca_key;
369const char *mbedtls_test_ca_pwd = test_ca_pwd;
370const char *mbedtls_test_ca_crt = test_ca_crt;
371
372const char *mbedtls_test_srv_key = test_srv_key;
373const char *mbedtls_test_srv_pwd = test_srv_pwd;
374const char *mbedtls_test_srv_crt = test_srv_crt;
375
376const char *mbedtls_test_cli_key = test_cli_key;
377const char *mbedtls_test_cli_pwd = test_cli_pwd;
378const char *mbedtls_test_cli_crt = test_cli_crt;
379
380const size_t mbedtls_test_ca_key_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]381 sizeof(test_ca_key);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]382const size_t mbedtls_test_ca_pwd_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]383 sizeof(test_ca_pwd) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]384const size_t mbedtls_test_ca_crt_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]385 sizeof(test_ca_crt);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]386
387const size_t mbedtls_test_srv_key_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]388 sizeof(test_srv_key);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]389const size_t mbedtls_test_srv_pwd_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]390 sizeof(test_srv_pwd) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]391const size_t mbedtls_test_srv_crt_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]392 sizeof(test_srv_crt);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]393
394const size_t mbedtls_test_cli_key_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]395 sizeof(test_cli_key);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]396const size_t mbedtls_test_cli_pwd_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]397 sizeof(test_cli_pwd) - 1;
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]398const size_t mbedtls_test_cli_crt_len =
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]399 sizeof(test_cli_crt);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]400
401/*
402 *
403 * Lists of certificates
404 *
405 */
406
407/* List of CAs in PEM or DER, depending on config */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]408const char *mbedtls_test_cas[] = {
Elena Uziunaite9fc5be02024-09-04 18:12:59 +0100[diff] [blame]409#if defined(MBEDTLS_RSA_C) && defined(PSA_WANT_ALG_SHA_1)
Gilles Peskine750c3532017-05-05 18:56:30 +0200[diff] [blame]410 mbedtls_test_ca_crt_rsa_sha1,
411#endif
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]412#if defined(MBEDTLS_RSA_C) && defined(PSA_WANT_ALG_SHA_256)
Gilles Peskine750c3532017-05-05 18:56:30 +0200[diff] [blame]413 mbedtls_test_ca_crt_rsa_sha256,
Manuel Pégourié-Gonnard2f165062015-03-27 10:20:26 +0100[diff] [blame]414#endif
Elena Uziunaitea6950b82024-07-30 13:55:59 +0100[diff] [blame]415#if defined(PSA_HAVE_ALG_SOME_ECDSA)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]416 mbedtls_test_ca_crt_ec,
Manuel Pégourié-Gonnard2f165062015-03-27 10:20:26 +0100[diff] [blame]417#endif
418 NULL
419};
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]420const size_t mbedtls_test_cas_len[] = {
Elena Uziunaite9fc5be02024-09-04 18:12:59 +0100[diff] [blame]421#if defined(MBEDTLS_RSA_C) && defined(PSA_WANT_ALG_SHA_1)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]422 sizeof(mbedtls_test_ca_crt_rsa_sha1),
Gilles Peskine750c3532017-05-05 18:56:30 +0200[diff] [blame]423#endif
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]424#if defined(MBEDTLS_RSA_C) && defined(PSA_WANT_ALG_SHA_256)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]425 sizeof(mbedtls_test_ca_crt_rsa_sha256),
Manuel Pégourié-Gonnard2f165062015-03-27 10:20:26 +0100[diff] [blame]426#endif
Elena Uziunaitea6950b82024-07-30 13:55:59 +0100[diff] [blame]427#if defined(PSA_HAVE_ALG_SOME_ECDSA)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]428 sizeof(mbedtls_test_ca_crt_ec),
Manuel Pégourié-Gonnard2f165062015-03-27 10:20:26 +0100[diff] [blame]429#endif
430 0
431};
432
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]433/* List of all available CA certificates in DER format */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]434const unsigned char *mbedtls_test_cas_der[] = {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]435#if defined(MBEDTLS_RSA_C)
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]436#if defined(PSA_WANT_ALG_SHA_256)
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]437 mbedtls_test_ca_crt_rsa_sha256_der,
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]438#endif /* PSA_WANT_ALG_SHA_256 */
Elena Uziunaite9fc5be02024-09-04 18:12:59 +0100[diff] [blame]439#if defined(PSA_WANT_ALG_SHA_1)
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]440 mbedtls_test_ca_crt_rsa_sha1_der,
Elena Uziunaite9fc5be02024-09-04 18:12:59 +0100[diff] [blame]441#endif /* PSA_WANT_ALG_SHA_1 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]442#endif /* MBEDTLS_RSA_C */
Elena Uziunaitea6950b82024-07-30 13:55:59 +0100[diff] [blame]443#if defined(PSA_HAVE_ALG_SOME_ECDSA)
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]444 mbedtls_test_ca_crt_ec_der,
Elena Uziunaitea6950b82024-07-30 13:55:59 +0100[diff] [blame]445#endif /* PSA_HAVE_ALG_SOME_ECDSA */
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]446 NULL
447};
448
449const size_t mbedtls_test_cas_der_len[] = {
450#if defined(MBEDTLS_RSA_C)
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]451#if defined(PSA_WANT_ALG_SHA_256)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]452 sizeof(mbedtls_test_ca_crt_rsa_sha256_der),
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]453#endif /* PSA_WANT_ALG_SHA_256 */
Elena Uziunaite9fc5be02024-09-04 18:12:59 +0100[diff] [blame]454#if defined(PSA_WANT_ALG_SHA_1)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]455 sizeof(mbedtls_test_ca_crt_rsa_sha1_der),
Elena Uziunaite9fc5be02024-09-04 18:12:59 +0100[diff] [blame]456#endif /* PSA_WANT_ALG_SHA_1 */
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]457#endif /* MBEDTLS_RSA_C */
Elena Uziunaitea6950b82024-07-30 13:55:59 +0100[diff] [blame]458#if defined(PSA_HAVE_ALG_SOME_ECDSA)
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]459 sizeof(mbedtls_test_ca_crt_ec_der),
Elena Uziunaitea6950b82024-07-30 13:55:59 +0100[diff] [blame]460#endif /* PSA_HAVE_ALG_SOME_ECDSA */
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]461 0
462};
463
464/* Concatenation of all available CA certificates in PEM format */
465#if defined(MBEDTLS_PEM_PARSE_C)
466const char mbedtls_test_cas_pem[] =
467#if defined(MBEDTLS_RSA_C)
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]468#if defined(PSA_WANT_ALG_SHA_256)
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]469 TEST_CA_CRT_RSA_SHA256_PEM
Elena Uziunaite0916cd72024-05-23 17:01:07 +0100[diff] [blame]470#endif /* PSA_WANT_ALG_SHA_256 */
Elena Uziunaite9fc5be02024-09-04 18:12:59 +0100[diff] [blame]471#if defined(PSA_WANT_ALG_SHA_1)
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]472 TEST_CA_CRT_RSA_SHA1_PEM
Elena Uziunaite9fc5be02024-09-04 18:12:59 +0100[diff] [blame]473#endif /* PSA_WANT_ALG_SHA_1 */
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]474#endif /* MBEDTLS_RSA_C */
Elena Uziunaitea6950b82024-07-30 13:55:59 +0100[diff] [blame]475#if defined(PSA_HAVE_ALG_SOME_ECDSA)
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]476 TEST_CA_CRT_EC_PEM
Elena Uziunaitea6950b82024-07-30 13:55:59 +0100[diff] [blame]477#endif /* PSA_HAVE_ALG_SOME_ECDSA */
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]478 "";
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]479const size_t mbedtls_test_cas_pem_len = sizeof(mbedtls_test_cas_pem);
Hanno Becker960e5882019-03-12 16:38:17 +0000[diff] [blame]480#endif /* MBEDTLS_PEM_PARSE_C */