summaryrefslogtreecommitdiff
path: root/test/certs
Commit message (Expand)AuthorAgeFilesLines
* Generate some certificates with the certificatePolicies extensionMatt Caswell2023-03-285-2/+72
* Add testcase for nc_match_single type confusionTomas Mraz2023-02-074-0/+79
* test: add test case for deadlock reported in #19643Pauli2022-12-081-0/+20
* Resign test/certs/rootCA.pem to expire in 100 yearsBernd Edlinger2022-11-121-18/+76
* Update the validity period of ed25519 cerificatesBernd Edlinger2022-11-122-14/+74
* X509: add tests for purpose code signing in verify applicationLutz Jaenicke2022-08-188-2/+127
* Rename the "timing" program to "timing_load_creds" and integrate it with test...Dr. David von Oheimb2022-08-162-0/+48
* test/certs/setup.sh: add missing comment on CA cert variant without basic con...Dr. David von Oheimb2022-07-121-2/+2
* Add test cases for verification of time stamping certificatesLutz Jaenicke2022-06-2210-0/+182
* Update further expiring certificates that affect testsTomas Mraz2022-06-053-33/+34
* Change the SCT issuer key to RSA 2048Bernd Edlinger2022-06-034-37/+57
* Enable setting SSL_CERT_FLAG_TLS_STRICT with ssl configTomas Mraz2022-06-033-0/+56
* Update expired SCT issuer certificateTomas Mraz2022-06-011-15/+15
* Test that PEM_BUFSIZE is passed into pem_password_cbTomas Mraz2022-01-031-0/+30
* Add a TLS test for name constraints with an EE cert without a SANMatt Caswell2021-12-141-0/+40
* Add a new Name Constraints test certMatt Caswell2021-12-144-8/+74
* 25-test_req.t: Add systematic SKID+AKID tests for self-issued (incl. self-sig...Dr. David von Oheimb2021-11-111-16/+7
* Test for DANE cross cert fixViktor Dukhovni2021-09-034-0/+67
* test_pem_reading: Test loading a key from a file with multiple PEM dataTomas Mraz2021-07-021-0/+90
* 25-test_verify.t: Add test case: accept trusted self-signed EE cert with key ...Dr. David von Oheimb2021-06-091-0/+19
* test/certs/mkcert.sh: Correct description of geneealt parametersDr. David von Oheimb2021-06-091-2/+2
* Fix the expected output of printing certificatesMatt Caswell2021-06-082-2/+2
* Test a bad SmtpUTF8Mailbox name constraintMatt Caswell2021-06-043-0/+62
* ee-self-signed.pem: Restore original version, adding -attime to 25-test_verify.tDr. David von Oheimb2021-06-021-17/+16
* TEST: Prefer using precomputed RSA and DH keys for more efficient testsDr. David von Oheimb2021-05-271-0/+14
* test/certs/setup.sh: Fix two glitchesDr. David von Oheimb2021-05-053-12/+12
* update test/certs/ee-pathlen.pem to contain SKID and AKIDDr. David von Oheimb2021-05-051-9/+10
* test/certs/setup.sh: structural cleanupDr. David von Oheimb2021-05-051-41/+32
* PEM_X509_INFO_read_bio_ex(): Generalize to allow parsing any type of private keyDr. David von Oheimb2021-04-081-0/+30
* d2i_PrivateKey{,_ex}() and PEM_X509_INFO_read_bio_ex(): Fix handling of RSA/D...Dr. David von Oheimb2021-04-081-0/+74
* test/x509: Test for issuer being overwritten when printing.Tomas Mraz2021-03-043-104/+93
* Fix NULL access in ssl_build_cert_chain() when ctx is NULL.Shane Lontis2021-03-031-0/+84
* test_ssl_new: X448, X25519, and EdDSA are supported with fipsTomas Mraz2021-03-031-6/+6
* check_sig_alg_match(): weaken sig nid comparison to allow RSA{,PSS} key verif...Dr. David von Oheimb2021-01-286-9/+117
* Update copyright yearRichard Levitte2021-01-281-1/+1
* make various test CA certs RFC 5280 compliant w.r.t. X509 extensionsDr. David von Oheimb2021-01-2041-402/+416
* apps/req.c: Add -copy_extensions option for use with -x509; default: noneDr. David von Oheimb2021-01-131-0/+18
* X509_cmp(): Fix comparison in case x509v3_cache_extensions() failed to due to...Dr. David von Oheimb2021-01-131-0/+19
* test/certs/setup.sh: Fix two glitchesDr. David von Oheimb2020-12-041-3/+3
* x509_vfy.c: Restore rejection of expired trusted (root) certificateDr. David von Oheimb2020-12-032-0/+19
* Add some additional test certificates/keysMatt Caswell2020-11-189-0/+318
* Prune low-level ASN.1 parse errors from error queue in der2key_decode() etc.Dr. David von Oheimb2020-09-301-0/+20
* Implement treatment of id-pkix-ocsp-no-check extension for OCSP_basic_verify()Dr. David von Oheimb2020-09-264-1/+67
* Generate a certificate with critical id-pkix-ocsp-nocheck extensionTomas Mraz2020-09-262-1/+38
* Correct certificate and key names for explicit ec param testTomas Mraz2020-09-211-2/+4
* Disallow certs with explicit curve in verification chainTomas Mraz2020-09-1711-0/+116
* apps: make use of OSSL_STORE for generalized certs and CRLs loadingDr. David von Oheimb2020-08-202-0/+0
* Fix a test_verify failureMatt Caswell2020-07-282-17/+18
* Deprecate -nodes in favor of -noenc in pkcs12 and req appDr. David von Oheimb2020-07-281-1/+1
* Fix issue 1418 by moving check of KU_KEY_CERT_SIGN and weakening check_issued()Dr. David von Oheimb2020-07-012-0/+21
View Lorry Controller Status