탐색 도움말
로그인
litucks
/
torzu
Watch 1
Star 0
포크 1
파일 이슈 풀 리퀘스트 0
브렌치: master
브랜치 태그
torzu
/
externals
/
mbedtls
/
tests
/
data_files
/
Readme-x509.txt

Readme-x509.txt 5.5 KB
고유링크 히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132 
  1. This documents the X.509 CAs, certificates, and CRLS used for testing.
    2. 

  2. 

  3. Certification authorities
    4. 

  4. -------------------------
    5. 

  5. 

  6. There are two main CAs for use as trusted roots:
    7. 

  7. - test-ca.crt aka "C=NL, O=PolarSSL, CN=PolarSSL Test CA"
    8. 

  8.   uses a RSA-2048 key
    9. 

  9.   test-ca-sha1.crt and test-ca-sha256.crt use the same key, signed with
    10. 

  10.   different hashes.
    11. 

  11. - test-ca2*.crt aka "C=NL, O=PolarSSL, CN=Polarssl Test EC CA"
    12. 

  12.   uses an EC key with NIST P-384 (aka secp384r1)
    13. 

  13.   variants used to test the keyUsage extension
    14. 

  14. The files test-ca_cat12 and test-ca_cat21 contain them concatenated both ways.
    15. 

  15. 

  16. Two intermediate CAs are signed by them:
    17. 

  17. - test-int-ca.crt "C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate CA"
    18. 

  18.   uses RSA-4096, signed by test-ca2
    19. 

  19.     - test-int-ca-exp.crt is a copy that is expired
    20. 

  20. - test-int-ca2.crt "C=NL, O=PolarSSL, CN=PolarSSL Test Intermediate EC CA"
    21. 

  21.   uses an EC key with NIST P-384, signed by test-ca
    22. 

  22. 

  23. A third intermediate CA is signed by test-int-ca2.crt:
    24. 

  24. - test-int-ca3.crt "C=UK, O=mbed TLS, CN=mbed TLS Test intermediate CA 3"
    25. 

  25.   uses an EC key with NIST P-256, signed by test-int-ca2
    26. 

  26. 

  27. Finally, other CAs for specific purposes:
    28. 

  28. - enco-ca-prstr.pem: has its CN encoded as a printable string, but child cert
    29. 

  29.   enco-cert-utf8str.pem has its issuer's CN encoded as a UTF-8 string.
    30. 

  30. - test-ca-v1.crt: v1 "CA", signs
    31. 

  31.     server1-v1.crt: v1 "intermediate CA", signs
    32. 

  32.         server2-v1*.crt: EE cert (without of with chain in same file)
    33. 

  33. - keyUsage.decipherOnly.crt: has the decipherOnly keyUsage bit set
    34. 

  34. 

  35. End-entity certificates
    36. 

  36. -----------------------
    37. 

  37. 

  38. Short information fields:
    39. 

  39. 

  40. - name or pattern
    41. 

  41. - issuing CA:   1   -> test-ca.crt
    42. 

  42.                 2   -> test-ca2.crt
    43. 

  43.                 I1  -> test-int-ca.crt
    44. 

  44.                 I2  -> test-int-ca2.crt
    45. 

  45.                 I3  -> test-int-ca3.crt
    46. 

  46.                 O   -> other
    47. 

  47. - key type: R -> RSA, E -> EC
    48. 

  48. - C -> there is a CRL revoking this cert (see below)
    49. 

  49. - L -> CN=localhost (useful for local test servers)
    50. 

  50. - P1, P2 if the file includes parent (resp. parent + grandparent)
    51. 

  51. - free-form comments
    52. 

  52. 

  53. List of certificates:
    54. 

  54. 

  55. - cert_example_multi*.crt: 1/O R: subjectAltName
    56. 

  56. - cert_example_wildcard.crt: 1 R: wildcard in subject's CN
    57. 

  57. - cert_md*.crt, cert_sha*.crt: 1 R: signature hash
    58. 

  58. - cert_v1_with_ext.crt: 1 R: v1 with extensions (illegal)
    59. 

  59. - cli2.crt: 2 E: basic
    60. 

  60. - cli-rsa.key, cli-rsa-*.crt: RSA key used for test clients, signed by
    61. 

  61.   the RSA test CA.
    62. 

  62. - enco-cert-utf8str.pem: see enco-ca-prstr.pem above
    63. 

  63. - server1*.crt: 1* R C* P1*: misc *(server1-v1 see test-ca-v1.crt above)
    64. 

  64.     *CRL for: .cert_type.crt, .crt, .key_usage.crt, .v1.crt
    65. 

  65.     P1 only for _ca.crt
    66. 

  66. - server2-v1*.crt: O R: see test-ca-v1.crt above
    67. 

  67. - server2*.crt: 1 R L: misc
    68. 

  68. - server3.crt: 1 E L: EC cert signed by RSA CA
    69. 

  69. - server4.crt: 2 R L: RSA cert signed by EC CA
    70. 

  70. - server5*.crt: 2* E L: misc *(except -selfsigned and -ss-*)
    71. 

  71.     -sha*: hashes
    72. 

  72.     .eku*: extendeKeyUsage (cli/srv = www client/server, cs = codesign, etc)
    73. 

  73.     .ku*: keyUsage (ds = signatures, ke/ka = key exchange/agreement)
    74. 

  74.     .req*: CSR, not certificate
    75. 

  75.     -der*: trailing bytes in der (?)
    76. 

  76.     -badsign.crt: S5 with corrupted signature
    77. 

  77.     -expired.crt: S5 with "not after" date in the past
    78. 

  78.     -future.crt: S5 with "not before" date in the future
    79. 

  79.     -selfsigned.crt: Self-signed cert with S5 key
    80. 

  80.     -ss-expired.crt: Self-signed cert with S5 key, expired
    81. 

  81.     -ss-forgeca.crt: Copy of test-int-ca3 self-signed with S5 key
    82. 

  82. - server6-ss-child.crt: O E: "child" of non-CA server5-selfsigned
    83. 

  83. - server6.crt, server6.pem: 2 E L C: revoked
    84. 

  84. - server7.crt: I1 E L P1(usually): EC signed by RSA signed by EC
    85. 

  85.     -badsign.crt: S7 with corrupted signature + I1
    86. 

  86.     -expired.crt: S7 with "not after" date in the past + I1
    87. 

  87.     -future.crt: S7 with "not before" date in the future + I1
    88. 

  88.     _int-ca-exp.crt: S7 + expired I1
    89. 

  89.     _int-ca.crt: S7 + I1
    90. 

  90.     _int-ca_ca2.crt: S7 + I1 + 2
    91. 

  91.     _all_space.crt: S7 + I1 both with misplaced spaces (invalid PEM)
    92. 

  92.     _pem_space.crt: S7 with misplace space (invalid PEM) + I1
    93. 

  93.     _trailing_space.crt: S7 + I1 both with trainling space (valid PEM)
    94. 

  94.     _spurious_int-ca.crt: S7 + I2(spurious) + I1
    95. 

  95. - server8*.crt: I2 R L: RSA signed by EC signed by RSA (P1 for _int-ca2)
    96. 

  96. - server9*.crt: 1 R C* L P1*: signed using RSASSA-PSS
    97. 

  97.     *CRL for: 9.crt, -badsign, -with-ca (P1)
    98. 

  98. - server10.crt: I3 E L
    99. 

  99.     -badsign.crt: S10 with corrupted signature
    100. 

  100.     -bs_int3.pem: S10-badsign + I3
    101. 

  101.     _int3-bs.pem: S10 + I3-badsign
    102. 

  102.     _int3_int-ca2.crt: S10 + I3 + I2
    103. 

  103.     _int3_int-ca2_ca.crt: S10 + I3 + I2 + 1
    104. 

  104.     _int3_spurious_int-ca2.crt: S10 + I3 + I1(spurious) + I2
    105. 

  105. 

  106. Certificate revocation lists
    107. 

  107. ----------------------------
    108. 

  108. 

  109. Signing CA in parentheses (same meaning as certificates).
    110. 

  110. 

  111. - crl-ec-sha*.pem: (2) server6.crt
    112. 

  112. - crl-future.pem: (2) server6.crt + unknown
    113. 

  113. - crl-rsa-pss-*.pem: (1) server9{,badsign,with-ca}.crt + cert_sha384.crt + unknown
    114. 

  114. - crl.pem, crl-futureRevocationDate.pem, crl_expired.pem: (1) server1{,.cert_type,.key_usage,.v1}.crt + unknown
    115. 

  115. - crl_md*.pem: crl_sha*.pem: (1) same as crl.pem
    116. 

  116. - crt_cat_*.pem: (1+2) concatenations in various orders:
    117. 

  117.     ec = crl-ec-sha256.pem, ecfut = crl-future.pem
    118. 

  118.     rsa = crl.pem, rsabadpem = same with pem error, rsaexp = crl_expired.pem
    119. 

  119. 

  120. Note: crl_future would revoke server9 and cert_sha384.crt if signed by CA 1
    121. 

  121.       crl-rsa-pss* would revoke server6.crt if signed by CA 2
    122. 

  122. 

  123. Generation
    124. 

  124. ----------
    125. 

  125. 

  126. Newer test files have been generated through commands in the Makefile. The
    127. 

  127. resulting files are committed to the repository so that the tests can
    128. 

  128. run without having to re-do the generation and so that the output is the
    129. 

  129. same for everyone (the generation process is randomized).
    130. 

  130. 

  131. The origin of older certificates has not been recorded.
    132. 

  132.