1 # Generated with generate_ssl_tests.pl
5 test-0 = 0-server-auth-flex
6 test-1 = 1-client-auth-flex-request
7 test-2 = 2-client-auth-flex-require-fail
8 test-3 = 3-client-auth-flex-require
9 test-4 = 4-client-auth-flex-noroot
10 test-5 = 5-server-auth-TLSv1
11 test-6 = 6-client-auth-TLSv1-request
12 test-7 = 7-client-auth-TLSv1-require-fail
13 test-8 = 8-client-auth-TLSv1-require
14 test-9 = 9-client-auth-TLSv1-noroot
15 test-10 = 10-server-auth-TLSv1.1
16 test-11 = 11-client-auth-TLSv1.1-request
17 test-12 = 12-client-auth-TLSv1.1-require-fail
18 test-13 = 13-client-auth-TLSv1.1-require
19 test-14 = 14-client-auth-TLSv1.1-noroot
20 test-15 = 15-server-auth-TLSv1.2
21 test-16 = 16-client-auth-TLSv1.2-request
22 test-17 = 17-client-auth-TLSv1.2-require-fail
23 test-18 = 18-client-auth-TLSv1.2-require
24 test-19 = 19-client-auth-TLSv1.2-noroot
25 # ===========================================================
28 ssl_conf = 0-server-auth-flex-ssl
30 [0-server-auth-flex-ssl]
31 server = 0-server-auth-flex-server
32 client = 0-server-auth-flex-client
34 [0-server-auth-flex-server]
35 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
36 CipherString = DEFAULT
37 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
40 [0-server-auth-flex-client]
41 CipherString = DEFAULT
42 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
47 ExpectedResult = Success
50 # ===========================================================
52 [1-client-auth-flex-request]
53 ssl_conf = 1-client-auth-flex-request-ssl
55 [1-client-auth-flex-request-ssl]
56 server = 1-client-auth-flex-request-server
57 client = 1-client-auth-flex-request-client
59 [1-client-auth-flex-request-server]
60 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
61 CipherString = DEFAULT
62 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
66 [1-client-auth-flex-request-client]
67 CipherString = DEFAULT
68 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
73 ExpectedResult = Success
76 # ===========================================================
78 [2-client-auth-flex-require-fail]
79 ssl_conf = 2-client-auth-flex-require-fail-ssl
81 [2-client-auth-flex-require-fail-ssl]
82 server = 2-client-auth-flex-require-fail-server
83 client = 2-client-auth-flex-require-fail-client
85 [2-client-auth-flex-require-fail-server]
86 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
87 CipherString = DEFAULT
88 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
89 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
93 [2-client-auth-flex-require-fail-client]
94 CipherString = DEFAULT
95 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
100 ExpectedResult = ServerFail
101 ServerAlert = HandshakeFailure
104 # ===========================================================
106 [3-client-auth-flex-require]
107 ssl_conf = 3-client-auth-flex-require-ssl
109 [3-client-auth-flex-require-ssl]
110 server = 3-client-auth-flex-require-server
111 client = 3-client-auth-flex-require-client
113 [3-client-auth-flex-require-server]
114 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
115 CipherString = DEFAULT
116 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
117 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
121 [3-client-auth-flex-require-client]
122 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
123 CipherString = DEFAULT
124 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
125 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
130 ExpectedResult = Success
133 # ===========================================================
135 [4-client-auth-flex-noroot]
136 ssl_conf = 4-client-auth-flex-noroot-ssl
138 [4-client-auth-flex-noroot-ssl]
139 server = 4-client-auth-flex-noroot-server
140 client = 4-client-auth-flex-noroot-client
142 [4-client-auth-flex-noroot-server]
143 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
144 CipherString = DEFAULT
145 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
149 [4-client-auth-flex-noroot-client]
150 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
151 CipherString = DEFAULT
152 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
153 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
158 ExpectedResult = ServerFail
159 ServerAlert = UnknownCA
162 # ===========================================================
164 [5-server-auth-TLSv1]
165 ssl_conf = 5-server-auth-TLSv1-ssl
167 [5-server-auth-TLSv1-ssl]
168 server = 5-server-auth-TLSv1-server
169 client = 5-server-auth-TLSv1-client
171 [5-server-auth-TLSv1-server]
172 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
173 CipherString = DEFAULT
174 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
178 [5-server-auth-TLSv1-client]
179 CipherString = DEFAULT
181 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
186 ExpectedResult = Success
189 # ===========================================================
191 [6-client-auth-TLSv1-request]
192 ssl_conf = 6-client-auth-TLSv1-request-ssl
194 [6-client-auth-TLSv1-request-ssl]
195 server = 6-client-auth-TLSv1-request-server
196 client = 6-client-auth-TLSv1-request-client
198 [6-client-auth-TLSv1-request-server]
199 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
200 CipherString = DEFAULT
201 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
206 [6-client-auth-TLSv1-request-client]
207 CipherString = DEFAULT
209 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
214 ExpectedResult = Success
217 # ===========================================================
219 [7-client-auth-TLSv1-require-fail]
220 ssl_conf = 7-client-auth-TLSv1-require-fail-ssl
222 [7-client-auth-TLSv1-require-fail-ssl]
223 server = 7-client-auth-TLSv1-require-fail-server
224 client = 7-client-auth-TLSv1-require-fail-client
226 [7-client-auth-TLSv1-require-fail-server]
227 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
228 CipherString = DEFAULT
229 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
231 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
235 [7-client-auth-TLSv1-require-fail-client]
236 CipherString = DEFAULT
238 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
243 ExpectedResult = ServerFail
244 ServerAlert = HandshakeFailure
247 # ===========================================================
249 [8-client-auth-TLSv1-require]
250 ssl_conf = 8-client-auth-TLSv1-require-ssl
252 [8-client-auth-TLSv1-require-ssl]
253 server = 8-client-auth-TLSv1-require-server
254 client = 8-client-auth-TLSv1-require-client
256 [8-client-auth-TLSv1-require-server]
257 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
258 CipherString = DEFAULT
259 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
261 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
265 [8-client-auth-TLSv1-require-client]
266 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
267 CipherString = DEFAULT
268 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
270 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
275 ExpectedResult = Success
278 # ===========================================================
280 [9-client-auth-TLSv1-noroot]
281 ssl_conf = 9-client-auth-TLSv1-noroot-ssl
283 [9-client-auth-TLSv1-noroot-ssl]
284 server = 9-client-auth-TLSv1-noroot-server
285 client = 9-client-auth-TLSv1-noroot-client
287 [9-client-auth-TLSv1-noroot-server]
288 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
289 CipherString = DEFAULT
290 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
295 [9-client-auth-TLSv1-noroot-client]
296 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
297 CipherString = DEFAULT
298 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
300 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
305 ExpectedResult = ServerFail
306 ServerAlert = UnknownCA
309 # ===========================================================
311 [10-server-auth-TLSv1.1]
312 ssl_conf = 10-server-auth-TLSv1.1-ssl
314 [10-server-auth-TLSv1.1-ssl]
315 server = 10-server-auth-TLSv1.1-server
316 client = 10-server-auth-TLSv1.1-client
318 [10-server-auth-TLSv1.1-server]
319 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
320 CipherString = DEFAULT
321 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
325 [10-server-auth-TLSv1.1-client]
326 CipherString = DEFAULT
328 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
333 ExpectedResult = Success
336 # ===========================================================
338 [11-client-auth-TLSv1.1-request]
339 ssl_conf = 11-client-auth-TLSv1.1-request-ssl
341 [11-client-auth-TLSv1.1-request-ssl]
342 server = 11-client-auth-TLSv1.1-request-server
343 client = 11-client-auth-TLSv1.1-request-client
345 [11-client-auth-TLSv1.1-request-server]
346 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
347 CipherString = DEFAULT
348 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
353 [11-client-auth-TLSv1.1-request-client]
354 CipherString = DEFAULT
356 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
361 ExpectedResult = Success
364 # ===========================================================
366 [12-client-auth-TLSv1.1-require-fail]
367 ssl_conf = 12-client-auth-TLSv1.1-require-fail-ssl
369 [12-client-auth-TLSv1.1-require-fail-ssl]
370 server = 12-client-auth-TLSv1.1-require-fail-server
371 client = 12-client-auth-TLSv1.1-require-fail-client
373 [12-client-auth-TLSv1.1-require-fail-server]
374 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
375 CipherString = DEFAULT
376 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
378 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
382 [12-client-auth-TLSv1.1-require-fail-client]
383 CipherString = DEFAULT
385 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
390 ExpectedResult = ServerFail
391 ServerAlert = HandshakeFailure
394 # ===========================================================
396 [13-client-auth-TLSv1.1-require]
397 ssl_conf = 13-client-auth-TLSv1.1-require-ssl
399 [13-client-auth-TLSv1.1-require-ssl]
400 server = 13-client-auth-TLSv1.1-require-server
401 client = 13-client-auth-TLSv1.1-require-client
403 [13-client-auth-TLSv1.1-require-server]
404 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
405 CipherString = DEFAULT
406 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
408 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
412 [13-client-auth-TLSv1.1-require-client]
413 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
414 CipherString = DEFAULT
415 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
417 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
422 ExpectedResult = Success
425 # ===========================================================
427 [14-client-auth-TLSv1.1-noroot]
428 ssl_conf = 14-client-auth-TLSv1.1-noroot-ssl
430 [14-client-auth-TLSv1.1-noroot-ssl]
431 server = 14-client-auth-TLSv1.1-noroot-server
432 client = 14-client-auth-TLSv1.1-noroot-client
434 [14-client-auth-TLSv1.1-noroot-server]
435 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
436 CipherString = DEFAULT
437 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
442 [14-client-auth-TLSv1.1-noroot-client]
443 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
444 CipherString = DEFAULT
445 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
447 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
452 ExpectedResult = ServerFail
453 ServerAlert = UnknownCA
456 # ===========================================================
458 [15-server-auth-TLSv1.2]
459 ssl_conf = 15-server-auth-TLSv1.2-ssl
461 [15-server-auth-TLSv1.2-ssl]
462 server = 15-server-auth-TLSv1.2-server
463 client = 15-server-auth-TLSv1.2-client
465 [15-server-auth-TLSv1.2-server]
466 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
467 CipherString = DEFAULT
468 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
472 [15-server-auth-TLSv1.2-client]
473 CipherString = DEFAULT
475 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
480 ExpectedResult = Success
483 # ===========================================================
485 [16-client-auth-TLSv1.2-request]
486 ssl_conf = 16-client-auth-TLSv1.2-request-ssl
488 [16-client-auth-TLSv1.2-request-ssl]
489 server = 16-client-auth-TLSv1.2-request-server
490 client = 16-client-auth-TLSv1.2-request-client
492 [16-client-auth-TLSv1.2-request-server]
493 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
494 CipherString = DEFAULT
495 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
500 [16-client-auth-TLSv1.2-request-client]
501 CipherString = DEFAULT
503 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
508 ExpectedResult = Success
511 # ===========================================================
513 [17-client-auth-TLSv1.2-require-fail]
514 ssl_conf = 17-client-auth-TLSv1.2-require-fail-ssl
516 [17-client-auth-TLSv1.2-require-fail-ssl]
517 server = 17-client-auth-TLSv1.2-require-fail-server
518 client = 17-client-auth-TLSv1.2-require-fail-client
520 [17-client-auth-TLSv1.2-require-fail-server]
521 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
522 CipherString = DEFAULT
523 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
525 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
529 [17-client-auth-TLSv1.2-require-fail-client]
530 CipherString = DEFAULT
532 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
537 ExpectedResult = ServerFail
538 ServerAlert = HandshakeFailure
541 # ===========================================================
543 [18-client-auth-TLSv1.2-require]
544 ssl_conf = 18-client-auth-TLSv1.2-require-ssl
546 [18-client-auth-TLSv1.2-require-ssl]
547 server = 18-client-auth-TLSv1.2-require-server
548 client = 18-client-auth-TLSv1.2-require-client
550 [18-client-auth-TLSv1.2-require-server]
551 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
552 CipherString = DEFAULT
553 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
555 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
559 [18-client-auth-TLSv1.2-require-client]
560 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
561 CipherString = DEFAULT
562 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
564 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
569 ExpectedResult = Success
572 # ===========================================================
574 [19-client-auth-TLSv1.2-noroot]
575 ssl_conf = 19-client-auth-TLSv1.2-noroot-ssl
577 [19-client-auth-TLSv1.2-noroot-ssl]
578 server = 19-client-auth-TLSv1.2-noroot-server
579 client = 19-client-auth-TLSv1.2-noroot-client
581 [19-client-auth-TLSv1.2-noroot-server]
582 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
583 CipherString = DEFAULT
584 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
589 [19-client-auth-TLSv1.2-noroot-client]
590 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
591 CipherString = DEFAULT
592 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
594 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
599 ExpectedResult = ServerFail
600 ServerAlert = UnknownCA