r509 0.8

data/spec/fixtures/cert1.pem

@@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/fixtures/cert1_public_key_modulus.txt

@@ -0,0 +1 @@
+24630971410744865913569961381668874688432831016544800505320166333007100125499128880000303407470870857636619291962558180334103292832194937383813597864155120202277060069820197095975983386868280553669760645969479862694952118381076377601363718930322727985008055584017660351283592558242485008535975786753372013288282386020273976828743432005956968737387927257612175455642406337816321998427105919837803650713090433785218529783708780066618310721454849953401053375159111659029567033039891816116708853197318105877333703818188172104150797355286526103110404067449112177435433978858401587853081726762154478759362912482674429344459

data/spec/fixtures/cert3.pem

@@ -0,0 +1,28 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/fixtures/cert3_key.pem

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

data/spec/fixtures/cert3_key_des3.pem

@@ -0,0 +1,30 @@
+-----BEGIN RSA PRIVATE KEY-----
+Proc-Type: 4,ENCRYPTED
+DEK-Info: DES-EDE3-CBC,B399A829C718E617
+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+-----END RSA PRIVATE KEY-----

data/spec/fixtures/cert4.pem

@@ -0,0 +1,14 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/fixtures/cert5.pem

@@ -0,0 +1,30 @@
+-----BEGIN CERTIFICATE-----
+MIIFHDCCBASgAwIBAgILAQAAAAABKqrUZjAwDQYJKoZIhvcNAQEFBQAwajEjMCEG
+A1UECxMaT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gQ0ExEzARBgNVBAoTCkdsb2Jh
+bFNpZ24xLjAsBgNVBAMTJUdsb2JhbFNpZ24gT3JnYW5pemF0aW9uIFZhbGlkYXRp
+b24gQ0EwHhcNMTAwODI1MTkzMjQ4WhcNMTIwODI1MTkzMjQyWjCBjTELMAkGA1UE
+BhMCVVMxETAPBgNVBAgMCE1pY2hpZ2FuMQ4wDAYDVQQHDAVGbGludDENMAsGA1UE
+CwwEQ1NFUDEnMCUGA1UECgweVW5pdmVyc2l0eSBvZiBNaWNoaWdhbiAtIEZsaW50
+MSMwIQYDVQQDDBptZWRpYXNpdGUuY3NlcC51bWZsaW50LmVkdTCCASIwDQYJKoZI
+hvcNAQEBBQADggEPADCCAQoCggEBAJxOp0x8u1cMM+jjaxZrL2LWlF48Gn+zz/g9
+xgDNFgMdURZufhR69wlMcD10vRR9p4M1LPzRCIZfGZDINpo+EJgYjvhD2WNBi84J
+A7RIDwS2JVms1TdasiUIGLsRIUska4NrbgwBQCfoplA6XgLxphROaIln8tc06EFN
+pE/rvP/+V/QQL2zwGDam8wYwoy1YVZqCRPH2tdxSRJcEpb9w/tHftuWgzrfmjrsL
+W7U82VS9ujMtJsj9/u/sRDrvcFB+B43vOW0AVizSRd/NvYURvXh72VyAKYWAX084
+s8lG2cPMZLPE/dpCchF9fhOAYEpROzgbzNeE97WQrqtSCWKoNu0CAwEAAaOCAZ0w
+ggGZMB8GA1UdIwQYMBaAFH1tKuxmq6dRNqsCafFwj8RZC5ofMEkGCCsGAQUFBwEB
+BD0wOzA5BggrBgEFBQcwAoYtaHR0cDovL3NlY3VyZS5nbG9iYWxzaWduLm5ldC9j
+YWNlcnQvb3JndjEuY3J0MD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9jcmwuZ2xv
+YmFsc2lnbi5uZXQvT3JnYW5pemF0aW9uVmFsMS5jcmwwHQYDVR0OBBYEFAuPOd5z
+fc2ItOgNJFJ6z8OJ2TsaMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMCkGA1Ud
+JQQiMCAGCCsGAQUFBwMBBggrBgEFBQcDAgYKKwYBBAGCNwoDAzBLBgNVHSAERDBC
+MEAGCSsGAQQBoDIBFDAzMDEGCCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdsb2JhbHNp
+Z24ubmV0L3JlcG9zaXRvcnkvMBEGCWCGSAGG+EIBAQQEAwIGwDAlBgNVHREEHjAc
+ghptZWRpYXNpdGUuY3NlcC51bWZsaW50LmVkdTANBgkqhkiG9w0BAQUFAAOCAQEA
+lhHDdGTiXCDDnXAUKMERP/xlvQiDaaWXsm/ECVCg2DBuKZZSn9G2LyaCun3ke6eE
+bpkydfV+iE18Bvap4cr4HyjgZkv8rA4D1tyicRpUOUThyzR0kvwtU0YttcjcH4NQ
+Bj/HMDGjSR5rsuNnIyffbT01hz74t2kw/mGBTTcgCCxLpwHavhuVp2J1SYhD2TG5
+Ta/xeUm11VBu4l0BPpFetL+sEao+gwEgagPQlI26mARjauc2ei0G10FUPXQ2f37M
+K+Vqh/lAo+vAOXdA9I2c3E7/kIYiud02RoUhc8Oquo/mAzfI5n5zttBygycdPGDE
+Fjw+r4NKWKd3T3f/THmZfA==
+-----END CERTIFICATE-----

data/spec/fixtures/cert6.pem

@@ -0,0 +1,26 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/fixtures/cert_expired.pem

@@ -0,0 +1,26 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/fixtures/cert_not_yet_valid.pem

@@ -0,0 +1,26 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/fixtures/cert_san.pem

@@ -0,0 +1,27 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/fixtures/cert_san2.pem

@@ -0,0 +1,22 @@
+-----BEGIN CERTIFICATE-----
+MIIDtDCCApygAwIBAgIVANVYe5hJ6eVi4Z1I3O0e08Q7tDlwMA0GCSqGSIb3DQEB
+BQUAMFwxCzAJBgNVBAYTAlVTMREwDwYDVQQIDAhJbGxpbm9pczEQMA4GA1UEBwwH
+Q2hpY2FnbzERMA8GA1UECgwIcjUwOSBMTEMxFTATBgNVBAMMDGNuLmxhbmd1aS5z
+aDAeFw0xMjAxMDMxNDQ4MDRaFw0xNDA5MjgyMDQ4MDRaMFwxCzAJBgNVBAYTAlVT
+MREwDwYDVQQIDAhJbGxpbm9pczEQMA4GA1UEBwwHQ2hpY2FnbzERMA8GA1UECgwI
+cjUwOSBMTEMxFTATBgNVBAMMDGNuLmxhbmd1aS5zaDCCASIwDQYJKoZIhvcNAQEB
+BQADggEPADCCAQoCggEBAOaD+YHGsQESDcbB5FjUexFAfAZNS3wp1zkq+hYXJ3GK
+JoqnNkmNvsgbf9K0wuZEX+1FxJHS3v4PSWoAxppzysKTkLdMVtBlZ+BbgUuLJ7ek
+BtSKeC2PGuUiBTJ7UZk2SXJHioNP+YBtcE0M4/pFTXUIrhAbgky1zlG9d0Sz9xsS
+ogSW0D1i20vm7ZX/zETDYrWs/VjP6Ltrgu0128bD+CX7FHnJKRyScuJ3iRZgTYpL
+LLPGDXAgBNlTUT4572jYwKrbqrAWgGWKtbutyxR4O9wK8Du9VHYMaJoAPXSvD8N2
+48/2prcnXUDH1ZZlJBH2to8GR4gcurkhOk/pa4G6SukCAwEAAaNtMGswDwYDVR0T
+AQH/BAUwAwEB/zAdBgNVHQ4EFgQUs0yvpDcWE1lJgZ9RxhIbQKsEusgwOQYDVR0R
+BDIwMIIOc2FuMS5sYW5ndWkuc2iCDnNhbjIubGFuZ3VpLnNogg5zYW4zLmxhbmd1
+aS5zaDANBgkqhkiG9w0BAQUFAAOCAQEAXRa9V7X5LcgDc3Kc/ZjqAicL8yeSXolN
+Wmpb/9Bb+NF6Zs8r11Aag78yyW1OIZa5MJH/Os02pl9TbYY/iFuVw6cNmUcwIBKl
+5hUwE0TSmzojQd6egIYzMOJfB05H2F3eGbvNqK89HtIUzCms6g/Vh2W3T+15SmCS
+c3NfhgjdLRD5aN5sriAJF2SPovNs8JoQqp4pZEM4L5JwwTpbC5axvmOPGYbPVx1l
+x3JrA/HBVBz3pU9goGehRfMQDxQrTSRzhSRjsMaIJZ0/a9JX0TU4utCjZL9spCsy
+6rhmdZuoYXxMD442UBjWNFeITF6fGuVT05WwuWHuI0uw+s1PATUi8Q==
+-----END CERTIFICATE-----

data/spec/fixtures/config_pool_test_minimal.yaml

@@ -0,0 +1,15 @@
+certificate_authorities: {
+    test_ca: {
+        ca_cert: {
+            cert: 'test_ca.cer',
+            key: 'test_ca.key'
+        }
+    },
+    second_ca: {
+        ca_cert: {
+            cert: 'test_ca.cer',
+            key: 'test_ca.key'
+        }
+    }
+}
+config_is_string: "this is bogus"

data/spec/fixtures/config_test.yaml

@@ -0,0 +1,41 @@
+test_ca: {
+    ca_cert: {
+        cert: 'test_ca.cer',
+        key: 'test_ca.key'
+    },
+    crl_list: "crl_list_file.txt",
+    crl_number: "crl_number_file.txt",
+    cdp_location: 'URI:http://crl.domain.com/test_ca.crl',
+    crl_validity_hours: 72,
+    ocsp_validity_hours: 96,
+    ocsp_start_skew_seconds: 1800,
+    ocsp_location: 'URI:http://ocsp.domain.com',
+    message_digest: 'SHA1', #SHA1, SHA256, SHA512 supported. MD5 too, but you really shouldn't use that unless you have a good reason
+    profiles: {
+        server: {
+            basic_constraints: "CA:FALSE",
+            key_usage: [digitalSignature,keyEncipherment],
+            extended_key_usage: [serverAuth],
+            certificate_policies: [ [ "policyIdentifier=2.16.840.1.9999999999.1.2.3.4.1", "CPS.1=http://example.com/cps"] ]
+        },
+        client: {
+            basic_constraints: "CA:FALSE",
+            key_usage: [digitalSignature,keyEncipherment],
+            extended_key_usage: [clientAuth],
+            certificate_policies: [ [ "policyIdentifier=2.16.840.1.9999999999.1.2.3.4.2", "CPS.1=http://example.com/cps"] ]
+        },
+        server_with_subject_item_policy: {
+            basic_constraints: "CA:FALSE",
+            key_usage: [digitalSignature,keyEncipherment],
+            extended_key_usage: [serverAuth],
+            certificate_policies: [ [ "policyIdentifier=2.16.840.1.9999999999.1.2.3.4.1", "CPS.1=http://example.com/cps"] ],
+            subject_item_policy: {
+                "CN" : "required",
+                "O" : "optional",
+                "ST" : "required",
+                "C" : "required",
+                "OU" : "optional" }
+        }
+    }
+}
+config_is_string: "this is bogus"

data/spec/fixtures/config_test_engine_key.yaml

@@ -0,0 +1,7 @@
+engine_and_key: {
+    ca_cert: {
+        cert: 'test_ca.cer',
+        key: 'test_ca.key',
+        engine: 'chil'
+    }
+}

data/spec/fixtures/config_test_engine_no_key_name.yaml

@@ -0,0 +1,6 @@
+engine_no_key_name: {
+    ca_cert: {
+        cert: 'test_ca.cer',
+        engine: 'chil'
+    }
+}

data/spec/fixtures/config_test_minimal.yaml

@@ -0,0 +1,7 @@
+test_ca: {
+    ca_cert: {
+        cert: 'test_ca.cer',
+        key: 'test_ca.key'
+    }
+}
+config_is_string: "this is bogus"

data/spec/fixtures/config_test_password.yaml

@@ -0,0 +1,7 @@
+password_ca: {
+    ca_cert: {
+        cert: 'test_ca.cer',
+        key: 'test_ca_des3.key',
+        password: 'r509'
+    }
+}

data/spec/fixtures/config_test_various.yaml

@@ -0,0 +1,100 @@
+pkcs12_ca: {
+    ca_cert: {
+        pkcs12: "test_ca.p12",
+        password: "r509"
+    }
+}
+pkcs12_key_ca: {
+    ca_cert: {
+        pkcs12: "test_ca.p12",
+        password: "r509",
+        key: "test_ca.cer"
+    }
+}
+pkcs12_cert_ca: {
+    ca_cert: {
+        pkcs12: "test_ca.p12",
+        password: "r509",
+        cert: "test_ca.cer"
+    }
+}
+pkcs12_engine_ca: {
+    ca_cert: {
+        pkcs12: "test_ca.p12",
+        password: "r509",
+        engine: "chil",
+        key_name: "r509_key"
+    }
+}
+cert_no_key_ca: {
+    ca_cert: {
+        cert: "test_ca.cer"
+    }
+}
+missing_key_identifier_ca: {
+    ca_cert: {
+        cert: 'missing_key_identifier_ca.cer',
+        key: 'missing_key_identifier_ca.key'
+    },
+    message_digest: 'SHA1', #SHA1, SHA256, SHA512 supported. MD5 too, but you really shouldn't use that unless you have a good reason
+    profiles: {
+        server: {
+            basic_constraints: "CA:FALSE",
+            key_usage: [digitalSignature,keyEncipherment],
+            extended_key_usage: [serverAuth],
+            certificate_policies: [ [ "policyIdentifier=2.16.840.1.9999999999.3.0"], [ "policyIdentifier=2.16.840.1.9999999999.1.2.3.4.1", "CPS.1=http://example.com/cps"] ]
+        }
+    }
+}
+multi_policy_ca: {
+    ca_cert: {
+        cert: 'test_ca.cer',
+        key: 'test_ca.key'
+    },
+    message_digest: 'SHA1', #SHA1, SHA256, SHA512 supported. MD5 too, but you really shouldn't use that unless you have a good reason
+    profiles: {
+        server: {
+            basic_constraints: "CA:FALSE",
+            key_usage: [digitalSignature,keyEncipherment],
+            extended_key_usage: [serverAuth],
+            certificate_policies: [ [ "policyIdentifier=2.16.840.1.9999999999.3.0"], [ "policyIdentifier=2.16.840.1.9999999999.1.2.3.4.1", "CPS.1=http://example.com/cps"] ]
+        }
+    }
+}
+ocsp_delegate_ca: {
+    ca_cert: {
+        cert: 'test_ca.cer'
+    },
+    ocsp_cert: {
+        cert: 'test_ca_ocsp.cer',
+        key: 'test_ca_ocsp.key'
+    }
+}
+ocsp_chain_ca: {
+    ca_cert: {
+        cert: 'test_ca.cer'
+    },
+    ocsp_cert: {
+        cert: 'test_ca_ocsp.cer',
+        key: 'test_ca_ocsp.key'
+    },
+    ocsp_chain: 'test_ca_ocsp_chain.txt'
+}
+ocsp_pkcs12_ca: {
+    ca_cert: {
+        cert: 'test_ca.cer'
+    },
+    ocsp_cert: {
+        pkcs12: 'test_ca_ocsp.p12',
+        password: 'r509'
+    }
+}
+ocsp_engine_ca: {
+    ca_cert: {
+        cert: 'test_ca.cer'
+    },
+    ocsp_cert: {
+        cert: 'test_ca_ocsp.cer',
+        engine: 'chil'
+    }
+}