projects / openssl.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Fix session ticket and SNI
[openssl.git] / test / ssl-tests / 03-custom_verify.conf
1 # Generated with generate_ssl_tests.pl
2
3 num_tests = 9
4
5 test-0 = 0-verify-success
6 test-1 = 1-verify-custom-reject
7 test-2 = 2-verify-custom-allow
8 test-3 = 3-noverify-success
9 test-4 = 4-noverify-ignore-custom-reject
10 test-5 = 5-noverify-accept-custom-allow
11 test-6 = 6-verify-fail-no-root
12 test-7 = 7-verify-custom-success-no-root
13 test-8 = 8-verify-custom-fail-no-root
14 # ===========================================================
15
16 [0-verify-success]
17 ssl_conf = 0-verify-success-ssl
18
19 [0-verify-success-ssl]
20 server = 0-verify-success-server
21 server2 = 0-verify-success-server2
22 client = 0-verify-success-client
23
24 [0-verify-success-server]
25 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
26 CipherString = DEFAULT
27 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
28
29
30 [0-verify-success-server2]
31 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
32 CipherString = DEFAULT
33 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
34
35
36 [0-verify-success-client]
37 CipherString = DEFAULT
38 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
39 VerifyMode = Peer
40
41
42 [test-0]
43 ExpectedResult = Success
44
45
46 # ===========================================================
47
48 [1-verify-custom-reject]
49 ssl_conf = 1-verify-custom-reject-ssl
50
51 [1-verify-custom-reject-ssl]
52 server = 1-verify-custom-reject-server
53 server2 = 1-verify-custom-reject-server2
54 client = 1-verify-custom-reject-client
55
56 [1-verify-custom-reject-server]
57 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
58 CipherString = DEFAULT
59 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
60
61
62 [1-verify-custom-reject-server2]
63 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
64 CipherString = DEFAULT
65 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
66
67
68 [1-verify-custom-reject-client]
69 CipherString = DEFAULT
70 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
71 VerifyMode = Peer
72
73
74 [test-1]
75 ClientAlert = HandshakeFailure
76 ClientVerifyCallback = RejectAll
77 ExpectedResult = ClientFail
78
79
80 # ===========================================================
81
82 [2-verify-custom-allow]
83 ssl_conf = 2-verify-custom-allow-ssl
84
85 [2-verify-custom-allow-ssl]
86 server = 2-verify-custom-allow-server
87 server2 = 2-verify-custom-allow-server2
88 client = 2-verify-custom-allow-client
89
90 [2-verify-custom-allow-server]
91 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
92 CipherString = DEFAULT
93 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
94
95
96 [2-verify-custom-allow-server2]
97 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
98 CipherString = DEFAULT
99 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
100
101
102 [2-verify-custom-allow-client]
103 CipherString = DEFAULT
104 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
105 VerifyMode = Peer
106
107
108 [test-2]
109 ClientVerifyCallback = AcceptAll
110 ExpectedResult = Success
111
112
113 # ===========================================================
114
115 [3-noverify-success]
116 ssl_conf = 3-noverify-success-ssl
117
118 [3-noverify-success-ssl]
119 server = 3-noverify-success-server
120 server2 = 3-noverify-success-server2
121 client = 3-noverify-success-client
122
123 [3-noverify-success-server]
124 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
125 CipherString = DEFAULT
126 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
127
128
129 [3-noverify-success-server2]
130 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
131 CipherString = DEFAULT
132 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
133
134
135 [3-noverify-success-client]
136 CipherString = DEFAULT
137
138
139 [test-3]
140 ExpectedResult = Success
141
142
143 # ===========================================================
144
145 [4-noverify-ignore-custom-reject]
146 ssl_conf = 4-noverify-ignore-custom-reject-ssl
147
148 [4-noverify-ignore-custom-reject-ssl]
149 server = 4-noverify-ignore-custom-reject-server
150 server2 = 4-noverify-ignore-custom-reject-server2
151 client = 4-noverify-ignore-custom-reject-client
152
153 [4-noverify-ignore-custom-reject-server]
154 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
155 CipherString = DEFAULT
156 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
157
158
159 [4-noverify-ignore-custom-reject-server2]
160 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
161 CipherString = DEFAULT
162 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
163
164
165 [4-noverify-ignore-custom-reject-client]
166 CipherString = DEFAULT
167
168
169 [test-4]
170 ClientVerifyCallback = RejectAll
171 ExpectedResult = Success
172
173
174 # ===========================================================
175
176 [5-noverify-accept-custom-allow]
177 ssl_conf = 5-noverify-accept-custom-allow-ssl
178
179 [5-noverify-accept-custom-allow-ssl]
180 server = 5-noverify-accept-custom-allow-server
181 server2 = 5-noverify-accept-custom-allow-server2
182 client = 5-noverify-accept-custom-allow-client
183
184 [5-noverify-accept-custom-allow-server]
185 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
186 CipherString = DEFAULT
187 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
188
189
190 [5-noverify-accept-custom-allow-server2]
191 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
192 CipherString = DEFAULT
193 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
194
195
196 [5-noverify-accept-custom-allow-client]
197 CipherString = DEFAULT
198
199
200 [test-5]
201 ClientVerifyCallback = AcceptAll
202 ExpectedResult = Success
203
204
205 # ===========================================================
206
207 [6-verify-fail-no-root]
208 ssl_conf = 6-verify-fail-no-root-ssl
209
210 [6-verify-fail-no-root-ssl]
211 server = 6-verify-fail-no-root-server
212 server2 = 6-verify-fail-no-root-server2
213 client = 6-verify-fail-no-root-client
214
215 [6-verify-fail-no-root-server]
216 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
217 CipherString = DEFAULT
218 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
219
220
221 [6-verify-fail-no-root-server2]
222 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
223 CipherString = DEFAULT
224 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
225
226
227 [6-verify-fail-no-root-client]
228 CipherString = DEFAULT
229 VerifyMode = Peer
230
231
232 [test-6]
233 ClientAlert = UnknownCA
234 ExpectedResult = ClientFail
235
236
237 # ===========================================================
238
239 [7-verify-custom-success-no-root]
240 ssl_conf = 7-verify-custom-success-no-root-ssl
241
242 [7-verify-custom-success-no-root-ssl]
243 server = 7-verify-custom-success-no-root-server
244 server2 = 7-verify-custom-success-no-root-server2
245 client = 7-verify-custom-success-no-root-client
246
247 [7-verify-custom-success-no-root-server]
248 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
249 CipherString = DEFAULT
250 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
251
252
253 [7-verify-custom-success-no-root-server2]
254 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
255 CipherString = DEFAULT
256 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
257
258
259 [7-verify-custom-success-no-root-client]
260 CipherString = DEFAULT
261 VerifyMode = Peer
262
263
264 [test-7]
265 ClientVerifyCallback = AcceptAll
266 ExpectedResult = Success
267
268
269 # ===========================================================
270
271 [8-verify-custom-fail-no-root]
272 ssl_conf = 8-verify-custom-fail-no-root-ssl
273
274 [8-verify-custom-fail-no-root-ssl]
275 server = 8-verify-custom-fail-no-root-server
276 server2 = 8-verify-custom-fail-no-root-server2
277 client = 8-verify-custom-fail-no-root-client
278
279 [8-verify-custom-fail-no-root-server]
280 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
281 CipherString = DEFAULT
282 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
283
284
285 [8-verify-custom-fail-no-root-server2]
286 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
287 CipherString = DEFAULT
288 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
289
290
291 [8-verify-custom-fail-no-root-client]
292 CipherString = DEFAULT
293 VerifyMode = Peer
294
295
296 [test-8]
297 ClientAlert = HandshakeFailure
298 ClientVerifyCallback = RejectAll
299 ExpectedResult = ClientFail
300
301
Unnamed repository; edit this file 'description' to name the repository.