1 # Generated with generate_ssl_tests.pl
5 test-0 = 0-ECDSA CipherString Selection
6 test-1 = 1-RSA CipherString Selection
7 test-2 = 2-ECDSA CipherString Selection, no ECDSA certificate
8 test-3 = 3-ECDSA Signature Algorithm Selection
9 test-4 = 4-ECDSA Signature Algorithm Selection SHA384
10 test-5 = 5-ECDSA Signature Algorithm Selection, no ECDSA certificate
11 test-6 = 6-RSA Signature Algorithm Selection
12 test-7 = 7-RSA-PSS Signature Algorithm Selection
13 test-8 = 8-TLS 1.2 DSA Certificate Test
14 # ===========================================================
16 [0-ECDSA CipherString Selection]
17 ssl_conf = 0-ECDSA CipherString Selection-ssl
19 [0-ECDSA CipherString Selection-ssl]
20 server = 0-ECDSA CipherString Selection-server
21 client = 0-ECDSA CipherString Selection-client
23 [0-ECDSA CipherString Selection-server]
24 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
25 CipherString = DEFAULT
26 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
27 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
29 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
31 [0-ECDSA CipherString Selection-client]
33 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
37 ExpectedResult = Success
38 ExpectedServerCertType = P-256
39 ExpectedServerSignType = EC
42 # ===========================================================
44 [1-RSA CipherString Selection]
45 ssl_conf = 1-RSA CipherString Selection-ssl
47 [1-RSA CipherString Selection-ssl]
48 server = 1-RSA CipherString Selection-server
49 client = 1-RSA CipherString Selection-client
51 [1-RSA CipherString Selection-server]
52 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
53 CipherString = DEFAULT
54 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
55 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
57 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
59 [1-RSA CipherString Selection-client]
61 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
65 ExpectedResult = Success
66 ExpectedServerCertType = RSA
67 ExpectedServerSignType = RSA-PSS
70 # ===========================================================
72 [2-ECDSA CipherString Selection, no ECDSA certificate]
73 ssl_conf = 2-ECDSA CipherString Selection, no ECDSA certificate-ssl
75 [2-ECDSA CipherString Selection, no ECDSA certificate-ssl]
76 server = 2-ECDSA CipherString Selection, no ECDSA certificate-server
77 client = 2-ECDSA CipherString Selection, no ECDSA certificate-client
79 [2-ECDSA CipherString Selection, no ECDSA certificate-server]
80 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
81 CipherString = DEFAULT
83 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
85 [2-ECDSA CipherString Selection, no ECDSA certificate-client]
87 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
91 ExpectedResult = ServerFail
94 # ===========================================================
96 [3-ECDSA Signature Algorithm Selection]
97 ssl_conf = 3-ECDSA Signature Algorithm Selection-ssl
99 [3-ECDSA Signature Algorithm Selection-ssl]
100 server = 3-ECDSA Signature Algorithm Selection-server
101 client = 3-ECDSA Signature Algorithm Selection-client
103 [3-ECDSA Signature Algorithm Selection-server]
104 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
105 CipherString = DEFAULT
106 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
107 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
108 MaxProtocol = TLSv1.2
109 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
111 [3-ECDSA Signature Algorithm Selection-client]
112 CipherString = DEFAULT
113 SignatureAlgorithms = ECDSA+SHA256
114 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
118 ExpectedResult = Success
119 ExpectedServerCertType = P-256
120 ExpectedServerSignHash = SHA256
121 ExpectedServerSignType = EC
124 # ===========================================================
126 [4-ECDSA Signature Algorithm Selection SHA384]
127 ssl_conf = 4-ECDSA Signature Algorithm Selection SHA384-ssl
129 [4-ECDSA Signature Algorithm Selection SHA384-ssl]
130 server = 4-ECDSA Signature Algorithm Selection SHA384-server
131 client = 4-ECDSA Signature Algorithm Selection SHA384-client
133 [4-ECDSA Signature Algorithm Selection SHA384-server]
134 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
135 CipherString = DEFAULT
136 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
137 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
138 MaxProtocol = TLSv1.2
139 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
141 [4-ECDSA Signature Algorithm Selection SHA384-client]
142 CipherString = DEFAULT
143 SignatureAlgorithms = ECDSA+SHA384
144 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
148 ExpectedResult = Success
149 ExpectedServerCertType = P-256
150 ExpectedServerSignHash = SHA384
151 ExpectedServerSignType = EC
154 # ===========================================================
156 [5-ECDSA Signature Algorithm Selection, no ECDSA certificate]
157 ssl_conf = 5-ECDSA Signature Algorithm Selection, no ECDSA certificate-ssl
159 [5-ECDSA Signature Algorithm Selection, no ECDSA certificate-ssl]
160 server = 5-ECDSA Signature Algorithm Selection, no ECDSA certificate-server
161 client = 5-ECDSA Signature Algorithm Selection, no ECDSA certificate-client
163 [5-ECDSA Signature Algorithm Selection, no ECDSA certificate-server]
164 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
165 CipherString = DEFAULT
166 MaxProtocol = TLSv1.2
167 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
169 [5-ECDSA Signature Algorithm Selection, no ECDSA certificate-client]
170 CipherString = DEFAULT
171 SignatureAlgorithms = ECDSA+SHA256
172 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
176 ExpectedResult = ServerFail
179 # ===========================================================
181 [6-RSA Signature Algorithm Selection]
182 ssl_conf = 6-RSA Signature Algorithm Selection-ssl
184 [6-RSA Signature Algorithm Selection-ssl]
185 server = 6-RSA Signature Algorithm Selection-server
186 client = 6-RSA Signature Algorithm Selection-client
188 [6-RSA Signature Algorithm Selection-server]
189 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
190 CipherString = DEFAULT
191 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
192 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
193 MaxProtocol = TLSv1.2
194 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
196 [6-RSA Signature Algorithm Selection-client]
197 CipherString = DEFAULT
198 SignatureAlgorithms = RSA+SHA256
199 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
203 ExpectedResult = Success
204 ExpectedServerCertType = RSA
205 ExpectedServerSignHash = SHA256
206 ExpectedServerSignType = RSA
209 # ===========================================================
211 [7-RSA-PSS Signature Algorithm Selection]
212 ssl_conf = 7-RSA-PSS Signature Algorithm Selection-ssl
214 [7-RSA-PSS Signature Algorithm Selection-ssl]
215 server = 7-RSA-PSS Signature Algorithm Selection-server
216 client = 7-RSA-PSS Signature Algorithm Selection-client
218 [7-RSA-PSS Signature Algorithm Selection-server]
219 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
220 CipherString = DEFAULT
221 ECDSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-ecdsa-cert.pem
222 ECDSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-ecdsa-key.pem
223 MaxProtocol = TLSv1.2
224 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
226 [7-RSA-PSS Signature Algorithm Selection-client]
227 CipherString = DEFAULT
228 SignatureAlgorithms = RSA-PSS+SHA256
229 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
233 ExpectedResult = Success
234 ExpectedServerCertType = RSA
235 ExpectedServerSignHash = SHA256
236 ExpectedServerSignType = RSA-PSS
239 # ===========================================================
241 [8-TLS 1.2 DSA Certificate Test]
242 ssl_conf = 8-TLS 1.2 DSA Certificate Test-ssl
244 [8-TLS 1.2 DSA Certificate Test-ssl]
245 server = 8-TLS 1.2 DSA Certificate Test-server
246 client = 8-TLS 1.2 DSA Certificate Test-client
248 [8-TLS 1.2 DSA Certificate Test-server]
249 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
251 DHParameters = ${ENV::TEST_CERTS_DIR}/dhp2048.pem
252 DSA.Certificate = ${ENV::TEST_CERTS_DIR}/server-dsa-cert.pem
253 DSA.PrivateKey = ${ENV::TEST_CERTS_DIR}/server-dsa-key.pem
254 MaxProtocol = TLSv1.2
255 MinProtocol = TLSv1.2
256 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
258 [8-TLS 1.2 DSA Certificate Test-client]
260 SignatureAlgorithms = DSA+SHA256:DSA+SHA1
261 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
265 ExpectedResult = Success