├── .gitattributes
├── .gitignore
├── AUTHORS
├── COPYING
├── ChangeLog
├── INSTALL
├── LICENSE
├── Makefile.am
├── Makefile.in
├── NEWS
├── README
├── README.brski
├── README.doxy
├── aclocal.m4
├── autogen.sh
├── build.gradle
├── config
├── compile
├── config.guess
├── config.sub
├── depcomp
├── install-sh
├── ltmain.sh
└── missing
├── configure
├── configure.ac
├── doxygen.cfg
├── example
├── android
│ ├── ESTClient
│ │ ├── .classpath
│ │ ├── .project
│ │ ├── AndroidManifest.xml
│ │ ├── assets
│ │ │ └── cacert.crt
│ │ ├── gen
│ │ │ └── com
│ │ │ │ └── cisco
│ │ │ │ └── estclient
│ │ │ │ ├── BuildConfig.java
│ │ │ │ └── R.java
│ │ ├── ic_launcher-web.png
│ │ ├── jni
│ │ │ ├── Android.mk
│ │ │ ├── est.h
│ │ │ └── est_wrapper.c
│ │ ├── libs
│ │ │ └── android-support-v4.jar
│ │ ├── proguard-project.txt
│ │ ├── project.properties
│ │ ├── res
│ │ │ ├── drawable-hdpi
│ │ │ │ ├── ic_action_search.png
│ │ │ │ └── ic_launcher.png
│ │ │ ├── drawable-ldpi
│ │ │ │ └── ic_launcher.png
│ │ │ ├── drawable-mdpi
│ │ │ │ ├── ic_action_search.png
│ │ │ │ └── ic_launcher.png
│ │ │ ├── drawable-xhdpi
│ │ │ │ ├── ic_action_search.png
│ │ │ │ └── ic_launcher.png
│ │ │ ├── layout
│ │ │ │ └── activity_est.xml
│ │ │ ├── menu
│ │ │ │ └── activity_est.xml
│ │ │ ├── values-v11
│ │ │ │ └── styles.xml
│ │ │ ├── values-v14
│ │ │ │ └── styles.xml
│ │ │ └── values
│ │ │ │ ├── strings.xml
│ │ │ │ └── styles.xml
│ │ └── src
│ │ │ └── com
│ │ │ └── cisco
│ │ │ └── estclient
│ │ │ ├── Base64.java
│ │ │ ├── ESTActivity.java
│ │ │ ├── EnrollThread.java
│ │ │ └── LoggerThread.java
│ └── README
├── build_examples.gradle
├── client-brski
│ ├── Makefile.am
│ ├── Makefile.in
│ ├── README
│ └── estclient-brski.c
├── client-simple
│ ├── Makefile.am
│ ├── Makefile.in
│ ├── README
│ └── estclient-simple.c
├── client
│ ├── Makefile.am
│ ├── Makefile.in
│ ├── README
│ ├── estclient.c
│ └── estclient_keypair
├── proxy
│ ├── Makefile.am
│ ├── Makefile.in
│ ├── createRA.bat
│ ├── createRA.sh
│ ├── estExampleCA.cnf
│ ├── estproxy.c
│ ├── runproxy.bat
│ └── runproxy.sh
├── server
│ ├── ESTcommon.sh
│ ├── ESTcommon_masa.sh
│ ├── Makefile.am
│ ├── Makefile.in
│ ├── README
│ ├── apps.h
│ ├── createCA.bat
│ ├── createCA.sh
│ ├── createMASA.sh
│ ├── estExampleCA.cnf
│ ├── estserver.c
│ ├── ext.cnf
│ ├── extExampleCA.cnf
│ ├── masa.cnf
│ ├── masa_ExampleCA.cnf
│ ├── mfgCAs
│ │ ├── certgen
│ │ │ ├── ESTCommon.py
│ │ │ ├── MfgCommon.py
│ │ │ └── __init__.py
│ │ ├── createSUDICA.py
│ │ ├── createTestMfgCAs.py
│ │ ├── estExampleCA.cnf
│ │ ├── estExampleIntSUDICA.cnf
│ │ ├── estExampleIntTestMfgCA.cnf
│ │ ├── estExampleSUDICA.cnf
│ │ ├── estExampleTestMfgCA.cnf
│ │ └── ext.cnf
│ ├── ossl_srv.c
│ ├── ossl_srv.h
│ ├── passwd.srpv
│ ├── runserver.bat
│ ├── runserver.sh
│ └── utkeystore
├── util
│ ├── jsmn.c
│ ├── jsmn.h
│ ├── simple_server.c
│ ├── simple_server.h
│ ├── simple_server_windows.c
│ ├── utils.c
│ └── utils.h
└── windows_util
│ ├── getopt.c
│ ├── getopt.h
│ └── getopt_long.c
├── intro.txt
├── java
├── README
├── jni
│ ├── .cproject
│ ├── .project
│ ├── .settings
│ │ └── org.eclipse.cdt.codan.core.prefs
│ ├── Debug
│ │ ├── makefile
│ │ ├── objects.mk
│ │ ├── sources.mk
│ │ └── subdir.mk
│ ├── Makefile.am
│ ├── Makefile.in
│ ├── client.c
│ └── jest.h
├── lib
│ ├── bcpkix-jdk15on-151.jar
│ ├── bcprov-ext-jdk15on-151.jar
│ ├── jacoco
│ │ ├── jacocoagent.jar
│ │ ├── jacocoant.jar
│ │ ├── org.jacoco.agent-0.7.1.201405082137.jar
│ │ ├── org.jacoco.ant-0.7.1.201405082137.jar
│ │ ├── org.jacoco.core-0.7.1.201405082137.jar
│ │ └── org.jacoco.report-0.7.1.201405082137.jar
│ ├── junit.jar
│ ├── org.hamcrest.core_1.1.0.jar
│ └── runone.jar
├── src
│ ├── .classpath
│ ├── .externalToolBuilders
│ │ ├── builder1.launch
│ │ └── buildjar.launch
│ ├── .project
│ ├── .settings
│ │ └── org.eclipse.ltk.core.refactoring.prefs
│ ├── build.xml
│ ├── buildjar.xml
│ ├── com
│ │ └── cisco
│ │ │ └── c3m
│ │ │ └── est
│ │ │ ├── Base64.java
│ │ │ ├── BufferSizeException.java
│ │ │ ├── CACertsException.java
│ │ │ ├── ESTClient.java
│ │ │ ├── EncodingException.java
│ │ │ ├── EnrollException.java
│ │ │ ├── EnrollRetryAfterException.java
│ │ │ ├── PKCS10CertificateRequest.java
│ │ │ ├── PKCS10CreationException.java
│ │ │ └── test
│ │ │ ├── DT
│ │ │ ├── CACertsTest.java
│ │ │ ├── CACertsTestNonFIPS.java
│ │ │ ├── ESTClientReEnrollTest.java
│ │ │ ├── ESTClientReEnrollTestNonFIPS.java
│ │ │ ├── ESTClientTest.java
│ │ │ ├── ESTClientTestNonFIPS.java
│ │ │ ├── FIPSTest.java
│ │ │ ├── Helpers.java
│ │ │ ├── PKCS10CertificateRequestTest.java
│ │ │ ├── PortFinder.java
│ │ │ ├── dt_start_estserver.sh
│ │ │ ├── dt_start_estserver1.sh
│ │ │ ├── dt_start_estserver2.sh
│ │ │ ├── dt_start_estserver3.sh
│ │ │ ├── dt_start_estserver4.sh
│ │ │ └── dt_start_estserver5.sh
│ │ │ └── UT
│ │ │ ├── CACertsTest.java
│ │ │ ├── ESTClientTest.java
│ │ │ ├── FIPSTest.java
│ │ │ ├── Helpers.java
│ │ │ └── PKCS10CertificateRequestTest.java
│ ├── run_dt_fips_junit.xml
│ ├── run_dt_junit.xml
│ └── runjunit.xml
└── test
│ ├── .classpath
│ ├── .project
│ ├── build.xml
│ └── src
│ ├── JESTTest.java
│ └── MyTrustManager.java
├── libcoap.cisco.273.patch
├── libcoap.cisco.273.patch.sha512
├── m4
├── libcurl.m4
├── libtool.m4
├── ltoptions.m4
├── ltsugar.m4
├── ltversion.m4
└── lt~obsolete.m4
├── safe_c_stub
├── Makefile.am
├── Makefile.in
├── include
│ ├── mem_primitives_lib.h
│ ├── safe_lib.h
│ ├── safe_lib_errno.h
│ ├── safe_mem_lib.h
│ └── safe_str_lib.h
├── lib
│ ├── Makefile.am
│ └── Makefile.in
└── src
│ ├── safe_mem_stub.c
│ └── safe_str_stub.c
├── src
├── Makefile.am
├── Makefile.in
└── est
│ ├── Makefile.am
│ ├── Makefile.in
│ ├── est.c
│ ├── est.h
│ ├── est_client.c
│ ├── est_client_http.c
│ ├── est_client_proxy.c
│ ├── est_client_proxy.h
│ ├── est_enhcd_cert_auth.c
│ ├── est_locl.h
│ ├── est_ossl_util.c
│ ├── est_ossl_util.h
│ ├── est_proxy.c
│ ├── est_server.c
│ ├── est_server.h
│ ├── est_server_coap.c
│ ├── est_server_http.c
│ ├── est_server_http.h
│ ├── est_sock_compat.h
│ ├── jsmn.c
│ ├── jsmn.h
│ ├── multipart_parser.c
│ └── multipart_parser.h
├── test
├── UT
│ ├── CA
│ │ ├── ESTcommon.sh
│ │ ├── ESTcommon_masa.sh
│ │ ├── brski_trustedcerts.crt
│ │ ├── coap_emu_certs
│ │ │ ├── cacert.crt
│ │ │ ├── cakey.pem
│ │ │ ├── coap_client.key
│ │ │ ├── coap_client.pem
│ │ │ ├── coapcacert.crt
│ │ │ ├── coapcertandkey.pem
│ │ │ ├── midsize.csr
│ │ │ └── multicacert.crt
│ │ ├── createCA.sh
│ │ ├── createMASA.sh
│ │ ├── createRA.bat
│ │ ├── createRA.sh
│ │ ├── estCA
│ │ │ ├── cacert.crt
│ │ │ ├── cacertandcrl.crt
│ │ │ ├── crl.pem
│ │ │ ├── estpwdfile
│ │ │ ├── estserver.crt
│ │ │ ├── estserver.req
│ │ │ ├── index.txt
│ │ │ ├── index.txt.attr
│ │ │ ├── index.txt.attr.old
│ │ │ ├── index.txt.old
│ │ │ ├── multicacerts.crt
│ │ │ ├── newcerts
│ │ │ │ ├── 01.pem
│ │ │ │ ├── 05.pem
│ │ │ │ └── 06.pem
│ │ │ ├── prime256v1.pem
│ │ │ ├── private
│ │ │ │ ├── cakey.pem
│ │ │ │ ├── estserver.pem
│ │ │ │ ├── estservercertandkey.pem
│ │ │ │ ├── proxy-certandkey.pem
│ │ │ │ └── proxy-key.pem
│ │ │ ├── proxy-cert.pem
│ │ │ ├── proxy-csr.pem
│ │ │ ├── serial
│ │ │ └── serial.old
│ │ ├── estExampleCA.cnf
│ │ ├── estExampleRA.cnf
│ │ ├── ext.cnf
│ │ ├── extCA
│ │ │ ├── cacert.crt
│ │ │ ├── index.txt
│ │ │ ├── index.txt.attr
│ │ │ ├── index.txt.attr.old
│ │ │ ├── index.txt.old
│ │ │ ├── newcerts
│ │ │ │ ├── 01.pem
│ │ │ │ └── 02.pem
│ │ │ ├── prime256v1.pem
│ │ │ ├── private
│ │ │ │ └── cakey.pem
│ │ │ ├── serial
│ │ │ └── serial.old
│ │ ├── extExampleCA.cnf
│ │ ├── masa.cnf
│ │ ├── masaCA.altid
│ │ │ ├── cacert.crt
│ │ │ ├── index.txt
│ │ │ ├── prime256v1.pem
│ │ │ ├── private
│ │ │ │ └── cakey.pem
│ │ │ └── serial
│ │ ├── masaCA
│ │ │ ├── cacert.crt
│ │ │ ├── index.txt
│ │ │ ├── index.txt.attr
│ │ │ ├── index.txt.old
│ │ │ ├── newcerts
│ │ │ │ └── 01.pem
│ │ │ ├── pledge_cert.pem
│ │ │ ├── pledge_csr.pem
│ │ │ ├── pledge_priv_key.pem
│ │ │ ├── prime256v1.pem
│ │ │ ├── private
│ │ │ │ └── cakey.pem
│ │ │ ├── serial
│ │ │ └── serial.old
│ │ ├── masa_ExampleCA.cnf
│ │ ├── masa_alt_id
│ │ │ ├── cacert.crt
│ │ │ └── cakey.pem
│ │ ├── mfgCAs
│ │ │ ├── TestMfgCA0
│ │ │ │ ├── cacert.crt
│ │ │ │ ├── cacert1-0.crt
│ │ │ │ ├── est.req
│ │ │ │ ├── esttestmfg0.crt
│ │ │ │ ├── index.txt
│ │ │ │ ├── index.txt.attr
│ │ │ │ ├── index.txt.attr.old
│ │ │ │ ├── index.txt.old
│ │ │ │ ├── newcerts
│ │ │ │ │ ├── 01.pem
│ │ │ │ │ └── 02.pem
│ │ │ │ ├── prime256v1.pem
│ │ │ │ ├── private
│ │ │ │ │ ├── cakey.pem
│ │ │ │ │ ├── cakey1-0.pem
│ │ │ │ │ ├── certandkey1-esttestmfg0.pem
│ │ │ │ │ └── esttestmfg0.pem
│ │ │ │ ├── serial
│ │ │ │ ├── serial.old
│ │ │ │ └── test.csr
│ │ │ ├── TestMfgCA1
│ │ │ │ ├── cacert.crt
│ │ │ │ ├── cacert1-0.crt
│ │ │ │ ├── est.req
│ │ │ │ ├── esttestmfg1.crt
│ │ │ │ ├── index.txt
│ │ │ │ ├── index.txt.attr
│ │ │ │ ├── index.txt.attr.old
│ │ │ │ ├── index.txt.old
│ │ │ │ ├── newcerts
│ │ │ │ │ ├── 01.pem
│ │ │ │ │ └── 02.pem
│ │ │ │ ├── prime256v1.pem
│ │ │ │ ├── private
│ │ │ │ │ ├── cakey.pem
│ │ │ │ │ ├── cakey1-0.pem
│ │ │ │ │ ├── certandkey1-esttestmfg1.pem
│ │ │ │ │ └── esttestmfg1.pem
│ │ │ │ ├── serial
│ │ │ │ ├── serial.old
│ │ │ │ └── test.csr
│ │ │ ├── TestMfgCA2
│ │ │ │ ├── cacert.crt
│ │ │ │ ├── cacert1-0.crt
│ │ │ │ ├── est.req
│ │ │ │ ├── esttestmfg2.crt
│ │ │ │ ├── index.txt
│ │ │ │ ├── index.txt.attr
│ │ │ │ ├── index.txt.attr.old
│ │ │ │ ├── index.txt.old
│ │ │ │ ├── newcerts
│ │ │ │ │ ├── 01.pem
│ │ │ │ │ └── 02.pem
│ │ │ │ ├── prime256v1.pem
│ │ │ │ ├── private
│ │ │ │ │ ├── cakey.pem
│ │ │ │ │ ├── cakey1-0.pem
│ │ │ │ │ ├── certandkey1-esttestmfg2.pem
│ │ │ │ │ └── esttestmfg2.pem
│ │ │ │ ├── serial
│ │ │ │ ├── serial.old
│ │ │ │ └── test.csr
│ │ │ ├── TestMfgCA3
│ │ │ │ ├── cacert.crt
│ │ │ │ ├── cacert1-0.crt
│ │ │ │ ├── est.req
│ │ │ │ ├── esttestmfg3.crt
│ │ │ │ ├── index.txt
│ │ │ │ ├── index.txt.attr
│ │ │ │ ├── index.txt.attr.old
│ │ │ │ ├── index.txt.old
│ │ │ │ ├── newcerts
│ │ │ │ │ ├── 01.pem
│ │ │ │ │ └── 02.pem
│ │ │ │ ├── prime256v1.pem
│ │ │ │ ├── private
│ │ │ │ │ ├── cakey.pem
│ │ │ │ │ ├── cakey1-0.pem
│ │ │ │ │ ├── certandkey1-esttestmfg3.pem
│ │ │ │ │ └── esttestmfg3.pem
│ │ │ │ ├── serial
│ │ │ │ ├── serial.old
│ │ │ │ └── test.csr
│ │ │ ├── TestMfgCA4
│ │ │ │ ├── cacert.crt
│ │ │ │ ├── cacert1-0.crt
│ │ │ │ ├── est.req
│ │ │ │ ├── esttestmfg4.crt
│ │ │ │ ├── index.txt
│ │ │ │ ├── index.txt.attr
│ │ │ │ ├── index.txt.attr.old
│ │ │ │ ├── index.txt.old
│ │ │ │ ├── newcerts
│ │ │ │ │ ├── 01.pem
│ │ │ │ │ └── 02.pem
│ │ │ │ ├── prime256v1.pem
│ │ │ │ ├── private
│ │ │ │ │ ├── cakey.pem
│ │ │ │ │ ├── cakey1-0.pem
│ │ │ │ │ ├── certandkey1-esttestmfg4.pem
│ │ │ │ │ └── esttestmfg4.pem
│ │ │ │ ├── serial
│ │ │ │ ├── serial.old
│ │ │ │ └── test.csr
│ │ │ ├── certgen
│ │ │ │ ├── ESTCommon.py
│ │ │ │ ├── MfgCommon.py
│ │ │ │ └── __init__.py
│ │ │ ├── createSUDICA.py
│ │ │ ├── createTestMfgCAs.py
│ │ │ ├── createTestMfgCSRs.py
│ │ │ ├── estExampleCA.cnf
│ │ │ ├── estExampleHugeIntSUDICA.cnf
│ │ │ ├── estExampleHugerIntSUDICA.cnf
│ │ │ ├── estExampleIntSUDICA.cnf
│ │ │ ├── estExampleIntTestMfgCA.cnf
│ │ │ ├── estExampleSUDICA.cnf
│ │ │ ├── estExampleTestMfgCA.cnf
│ │ │ ├── estHugeSUDI.crt
│ │ │ ├── estHugeSUDI.pem
│ │ │ ├── estHugerSUDI.crt
│ │ │ ├── estHugerSUDI.pem
│ │ │ ├── estsudi.pem
│ │ │ ├── ext.cnf
│ │ │ ├── huge_sudi_chain.crt
│ │ │ ├── huger_sudi_chain.crt
│ │ │ ├── sudiCA
│ │ │ │ ├── cacert.crt
│ │ │ │ ├── cacert1-0.crt
│ │ │ │ ├── cacert1-1.crt
│ │ │ │ ├── cacert2-0.crt
│ │ │ │ ├── cacert2-1.crt
│ │ │ │ ├── cacert2-2.crt
│ │ │ │ ├── cacert2-3.crt
│ │ │ │ ├── cacert2-4.crt
│ │ │ │ ├── cacert2-5.crt
│ │ │ │ ├── cacert2-6.crt
│ │ │ │ ├── cacert2-7.crt
│ │ │ │ ├── est.req
│ │ │ │ ├── estHugeSUDI.crt
│ │ │ │ ├── estHugerSUDI.crt
│ │ │ │ ├── estsudi.crt
│ │ │ │ ├── index.txt
│ │ │ │ ├── index.txt.attr
│ │ │ │ ├── index.txt.attr.old
│ │ │ │ ├── index.txt.old
│ │ │ │ ├── newcerts
│ │ │ │ │ ├── 01.pem
│ │ │ │ │ ├── 02.pem
│ │ │ │ │ ├── 03.pem
│ │ │ │ │ ├── 04.pem
│ │ │ │ │ ├── 05.pem
│ │ │ │ │ ├── 06.pem
│ │ │ │ │ ├── 07.pem
│ │ │ │ │ ├── 08.pem
│ │ │ │ │ ├── 09.pem
│ │ │ │ │ ├── 0A.pem
│ │ │ │ │ ├── 0B.pem
│ │ │ │ │ ├── 0C.pem
│ │ │ │ │ └── 0D.pem
│ │ │ │ ├── prime256v1.pem
│ │ │ │ ├── private
│ │ │ │ │ ├── cakey.pem
│ │ │ │ │ ├── cakey1-0.pem
│ │ │ │ │ ├── cakey1-1.pem
│ │ │ │ │ ├── cakey2-0.pem
│ │ │ │ │ ├── cakey2-1.pem
│ │ │ │ │ ├── cakey2-2.pem
│ │ │ │ │ ├── cakey2-3.pem
│ │ │ │ │ ├── cakey2-4.pem
│ │ │ │ │ ├── cakey2-5.pem
│ │ │ │ │ ├── cakey2-6.pem
│ │ │ │ │ ├── cakey2-7.pem
│ │ │ │ │ ├── certandkey1-estsudi.pem
│ │ │ │ │ ├── certandkey2-estHugeSUDI.pem
│ │ │ │ │ ├── certandkey2-estHugerSUDI.pem
│ │ │ │ │ ├── estHugeSUDI.pem
│ │ │ │ │ ├── estHugerSUDI.pem
│ │ │ │ │ └── estsudi.pem
│ │ │ │ ├── serial
│ │ │ │ └── serial.old
│ │ │ ├── sudi_chain.crt
│ │ │ ├── testmfg0_chain.crt
│ │ │ ├── testmfg1_chain.crt
│ │ │ ├── testmfg2_chain.crt
│ │ │ ├── testmfg3_chain.crt
│ │ │ ├── testmfg4_chain.crt
│ │ │ ├── trustedcertswithhugersudichain.crt
│ │ │ ├── trustedcertswithhugesudichain.crt
│ │ │ ├── trustedcertswithmfg0chain.crt
│ │ │ ├── trustedcertswithmfg1chain.crt
│ │ │ ├── trustedcertswithmfg2chain.crt
│ │ │ ├── trustedcertswithmfg3chain.crt
│ │ │ ├── trustedcertswithmfg4chain.crt
│ │ │ └── trustedcertswithsudichain.crt
│ │ ├── sudi_chain.crt
│ │ └── trustedcerts.crt
│ ├── Makefile
│ ├── US1005
│ │ ├── implicit-cert.pem
│ │ ├── implicit-key.pem
│ │ └── us1005.c
│ ├── US1060
│ │ ├── README
│ │ ├── cert-rsa-fqdnfail.pem
│ │ ├── cert-rsa.pem
│ │ ├── explicit-cert.pem
│ │ ├── explicit-key.pem
│ │ ├── key-rsa-fqdnfail.pem
│ │ ├── key-rsa.pem
│ │ ├── passwd.srpv
│ │ ├── selfsigned-cert.pem
│ │ ├── selfsigned-key.pem
│ │ ├── us1060.c
│ │ └── us1060c.c
│ ├── US1159
│ │ ├── README
│ │ ├── static_csrattrs.txt
│ │ └── us1159.c
│ ├── US1190
│ │ ├── estExampleCA.cnf
│ │ └── us1190.c
│ ├── US1864
│ │ ├── Makefile
│ │ └── us1864.c
│ ├── US1883
│ │ ├── Makefile
│ │ └── us1883.c
│ ├── US1884
│ │ ├── Makefile
│ │ └── us1884.c
│ ├── US2174
│ │ ├── cert.pem
│ │ ├── estExampleCA.cnf
│ │ ├── key.pem
│ │ └── us2174.c
│ ├── US3496
│ │ └── us3496.c
│ ├── US3512
│ │ └── us3512.c
│ ├── US3612
│ │ ├── us3612.c
│ │ └── us3612_key.pem
│ ├── US3646
│ │ └── us3646.c
│ ├── US4020
│ │ ├── antinat-cfg-badcred.xml
│ │ ├── antinat-cfg-goodcred.xml
│ │ ├── antinat-cfg.xml
│ │ ├── haproxy.cfg
│ │ └── us4020.c
│ ├── US4710
│ │ └── us4710.c
│ ├── US4747
│ │ ├── README
│ │ └── us4747.c
│ ├── US4752
│ │ ├── README
│ │ ├── cert_cn_match_wc.pem
│ │ ├── cert_cn_mismatch.pem
│ │ ├── cert_cn_mismatch_ip.pem
│ │ ├── cert_cn_mismatch_wc.pem
│ │ ├── cert_san_match.pem
│ │ ├── cert_san_match_ip.pem
│ │ ├── cert_san_match_wc.pem
│ │ ├── cert_san_mismatch.pem
│ │ ├── cert_san_mismatch_ip.pem
│ │ ├── cert_san_mismatch_wc.pem
│ │ ├── ext.cnf
│ │ ├── key_cn_match_wc.pem
│ │ ├── key_cn_mismatch.pem
│ │ ├── key_cn_mismatch_ip.pem
│ │ ├── key_cn_mismatch_wc.pem
│ │ ├── key_san_match.pem
│ │ ├── key_san_match_ip.pem
│ │ ├── key_san_match_wc.pem
│ │ ├── key_san_mismatch.pem
│ │ ├── key_san_mismatch_ip.pem
│ │ ├── key_san_mismatch_wc.pem
│ │ ├── test16_crl.pem
│ │ ├── test16trust.crt
│ │ ├── test17_crl.pem
│ │ ├── test17trust.crt
│ │ └── us4752.c
│ ├── US4778
│ │ └── us4778.c
│ ├── US4784
│ │ └── us4784.c
│ ├── US4880
│ │ ├── cert.pem
│ │ ├── estExampleCA.cnf
│ │ ├── key.pem
│ │ ├── tc2-new-cert.pkcs7b64
│ │ ├── tc2-new-key.keyb64
│ │ └── us4880.c
│ ├── US5052
│ │ ├── midsize.csr
│ │ ├── midsize.csr.der
│ │ ├── us5052.c
│ │ └── us5052.c.save
│ ├── US5121
│ │ └── us5121.c
│ ├── US5139
│ │ └── us5139.c
│ ├── US5184
│ │ └── us5184.c
│ ├── US5213
│ │ └── us5213.c
│ ├── US5226
│ │ └── us5226.c
│ ├── US5230
│ │ └── us5230.c
│ ├── US5237
│ │ └── us5237.c
│ ├── US5240
│ │ ├── midsize.csr
│ │ ├── proxy_cert.pem
│ │ ├── proxy_key.pem
│ │ └── us5240.c
│ ├── US5241
│ │ ├── midsize.csr
│ │ └── us5241.c
│ ├── US5244
│ │ └── us5244.c
│ ├── US5246
│ │ └── us5246.c
│ ├── US5248
│ │ └── us5248.c
│ ├── US5255
│ │ └── us5255.c
│ ├── US5282
│ │ ├── midsize.csr
│ │ └── us5282.c
│ ├── US5331
│ │ └── us5331.c
│ ├── US5357
│ │ └── us5357.c
│ ├── US5367
│ │ └── us5367.c
│ ├── US5394
│ │ └── us5394.c
│ ├── US5399
│ │ └── us5399.c
│ ├── US5418
│ │ ├── us5418.h
│ │ ├── us5418c.c
│ │ └── us5418h.c
│ ├── US748
│ │ ├── cert-RA.pem
│ │ ├── cert.pem
│ │ ├── estExampleCA.cnf
│ │ ├── key-RA.pem
│ │ ├── key.pem
│ │ ├── perftest.c
│ │ ├── test5.hdr
│ │ └── us748.c
│ ├── US893
│ │ ├── cert-expired.pem
│ │ ├── cert-untrusted.pem
│ │ ├── cert.pem
│ │ ├── estExampleCA.cnf
│ │ ├── key-expired.pem
│ │ ├── key-untrusted.pem
│ │ ├── key.pem
│ │ └── us893.c
│ ├── US894
│ │ ├── README
│ │ ├── estExampleCA.cnf
│ │ ├── explicit-cert.pem
│ │ ├── explicit-key.pem
│ │ ├── implicit-cert.pem
│ │ ├── implicit-key.pem
│ │ ├── req.p10
│ │ ├── revoked-cert.pem
│ │ ├── revoked-key.pem
│ │ ├── runserver_BA.sh
│ │ ├── runserver_DA.sh
│ │ ├── runserver_NA.sh
│ │ ├── runserver_RA.sh
│ │ ├── selfsigned-cert.pem
│ │ ├── selfsigned-key.pem
│ │ ├── test5.crt
│ │ ├── trustedcertsandcrl.crt
│ │ └── us894.c
│ ├── US895
│ │ └── us895.c
│ ├── US896
│ │ └── us896.c
│ ├── US897
│ │ ├── runserver_BA.sh
│ │ ├── singlechain_10certs_trusted.crt
│ │ ├── singlechain_9certs_missingcert.crt
│ │ ├── singlechain_expired.crt
│ │ ├── trustedCHain10RevokedDepth6Implicit10andcacert.crt
│ │ └── us897.c
│ ├── US898
│ │ ├── cert-corrupt.pem
│ │ ├── cert-expired.pem
│ │ ├── estExampleCA.cnf
│ │ ├── key-corrupt.pem
│ │ ├── key-expired.pem
│ │ ├── tc11_cert.pem
│ │ ├── tc11_key.pem
│ │ └── us898.c
│ ├── US899
│ │ ├── README
│ │ ├── cert_cn_match_wc.pem
│ │ ├── cert_cn_mismatch.pem
│ │ ├── cert_cn_mismatch_ip.pem
│ │ ├── cert_cn_mismatch_wc.pem
│ │ ├── cert_san_match.pem
│ │ ├── cert_san_match_ip.pem
│ │ ├── cert_san_match_wc.pem
│ │ ├── cert_san_mismatch.pem
│ │ ├── cert_san_mismatch_ip.pem
│ │ ├── cert_san_mismatch_wc.pem
│ │ ├── ext.cnf
│ │ ├── key_cn_match_wc.pem
│ │ ├── key_cn_mismatch.pem
│ │ ├── key_cn_mismatch_ip.pem
│ │ ├── key_cn_mismatch_wc.pem
│ │ ├── key_san_match.pem
│ │ ├── key_san_match_ip.pem
│ │ ├── key_san_match_wc.pem
│ │ ├── key_san_mismatch.pem
│ │ ├── key_san_mismatch_ip.pem
│ │ ├── key_san_mismatch_wc.pem
│ │ └── us899.c
│ ├── US900
│ │ └── us900.c
│ ├── US901
│ │ ├── README
│ │ ├── estExampleCA.cnf
│ │ ├── explicit-cert.pem
│ │ ├── explicit-key.pem
│ │ ├── implicit-cert.pem
│ │ ├── implicit-key.pem
│ │ ├── req.p10
│ │ ├── revoked-cert.pem
│ │ ├── revoked-key.pem
│ │ ├── runserver_BA.sh
│ │ ├── runserver_DA.sh
│ │ ├── runserver_NA.sh
│ │ ├── runserver_RA.sh
│ │ ├── selfsigned-cert.pem
│ │ ├── selfsigned-key.pem
│ │ └── us901.c
│ ├── US902
│ │ └── us902.c
│ ├── US903
│ │ ├── cert-RA.pem
│ │ ├── key-RA.pem
│ │ └── us903.c
│ └── runtest.c
├── build_ut.gradle
└── util
│ ├── apps.h
│ ├── cdets.c
│ ├── cdets.h
│ ├── curl_utils.c
│ ├── curl_utils.h
│ ├── est_coap_client.py
│ ├── ossl_srv.c
│ ├── ossl_srv.h
│ ├── parseTimers.py
│ ├── st_proxy.c
│ ├── st_proxy.h
│ ├── st_proxy_windows.c
│ ├── st_server.c
│ ├── st_server.h
│ ├── st_server_windows.c
│ ├── test_utils.c
│ └── test_utils.h
├── version
└── version.in
/.gitattributes:
--------------------------------------------------------------------------------
1 | #openssl CA index file is getting managled
2 | #on windows, set it to lf
3 | index.txt text eol=lf
4 |
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | ############################
2 | # Autotools
3 | ###########################
4 | Makefile
5 |
6 | /stamp-h?
7 | .deps/
8 | .dirstamp
9 | .libs/
10 | /libtool
11 | /autom4te.cache/
12 |
13 | /config.h
14 | /config.log
15 | /config.status
16 |
17 | ############################
18 | # Generated est_config.h file
19 | ############################
20 | /est_config.h
21 | /version
22 |
23 | ############################
24 | # Compiled obj files
25 | ############################
26 | *.lo
27 | *.o
28 |
29 | ############################
30 | # Compiled dynamic libraries
31 | ############################
32 | *.so
33 |
34 | ############################
35 | # Compiled static libraries
36 | ############################
37 | *.la
38 | *.a
39 |
40 |
41 | ############################
42 | # Project executables
43 | ############################
44 | /example/client-simple/estclient_simple
45 | /example/client/estclient
46 | /example/proxy/estproxy
47 | /example/server/estserver
48 | /example/server/estCA
49 | /example/server/extCA
50 | /test/UT/runtest
51 | /test/DT/runtest
52 |
53 | ############################
54 | # Python generated files
55 | ############################
56 | *.pyc
--------------------------------------------------------------------------------
/AUTHORS:
--------------------------------------------------------------------------------
1 | John Foley, Cisco Systems
2 | Pete Beal, Cisco Systems
3 | Barry Fussell, Cisco Systems
4 | Ryan Granger, Cisco Systems
5 | John Manuel, Cisco Systems
6 | Alex Harrison, Cisco Systems
--------------------------------------------------------------------------------
/ChangeLog:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/ChangeLog
--------------------------------------------------------------------------------
/Makefile.am:
--------------------------------------------------------------------------------
1 | ACLOCAL_AMFLAGS = -I m4
2 |
3 | if ENABLE_JNI
4 | libest_jni = java/jni
5 | endif
6 |
7 | if BUILTIN_LIBSAFEC
8 | stub_safec_dir = safe_c_stub
9 | endif
10 |
11 | if ENABLE_EXAMPLES
12 | if ENABLE_CLIENT_ONLY
13 | examples = example/client example/client-simple example/client-brski
14 | else
15 | examples = example/client example/client-simple example/client-brski example/server example/proxy
16 | endif
17 | endif
18 |
19 | SUBDIRS = $(stub_safec_dir) src $(libest_jni) $(examples)
20 |
21 | EXTRA_DIST = autogen.sh example/util LICENSE README.brski $(srcdir)/build.gradle $(srcdir)/example/build_examples.gradle
22 |
--------------------------------------------------------------------------------
/NEWS:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/NEWS
--------------------------------------------------------------------------------
/README.doxy:
--------------------------------------------------------------------------------
1 | To generate the libEST documentation using doxygen:
2 |
3 | 1. doxygen doxygen.cfg
4 | 2. cd latex
5 | 3. make
6 |
7 | The file refman.pdf will contain the doxygen documentation.
8 |
--------------------------------------------------------------------------------
/autogen.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | autoreconf --force --install -I config
3 |
4 |
--------------------------------------------------------------------------------
/example/android/ESTClient/.classpath:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/example/android/ESTClient/.project:
--------------------------------------------------------------------------------
1 |
2 |
3 | ESTClient
4 |
5 |
6 |
7 |
8 |
9 | com.android.ide.eclipse.adt.ResourceManagerBuilder
10 |
11 |
12 |
13 |
14 | com.android.ide.eclipse.adt.PreCompilerBuilder
15 |
16 |
17 |
18 |
19 | org.eclipse.jdt.core.javabuilder
20 |
21 |
22 |
23 |
24 | com.android.ide.eclipse.adt.ApkBuilder
25 |
26 |
27 |
28 |
29 |
30 | com.android.ide.eclipse.adt.AndroidNature
31 | org.eclipse.jdt.core.javanature
32 |
33 |
34 |
--------------------------------------------------------------------------------
/example/android/ESTClient/AndroidManifest.xml:
--------------------------------------------------------------------------------
1 |
5 |
6 |
9 |
10 |
11 |
15 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
--------------------------------------------------------------------------------
/example/android/ESTClient/assets/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBUzCB+qADAgECAgkAmXlWl/0CbP4wCgYIKoZIzj0EAwIwFzEVMBMGA1UEAxMM
3 | ZXN0RXhhbXBsZUNBMB4XDTE0MTAwMzE5MzQxMVoXDTE1MTAwMzE5MzQxMVowFzEV
4 | MBMGA1UEAxMMZXN0RXhhbXBsZUNBMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE
5 | hr9yPeE5YeziA7c+gHnTfBeyHAwZP65z53R3lP9nvct4IKqsGK87fkjOu0X9CAmd
6 | SiylTh6GxRpuKZKiysdGnaMvMC0wDAYDVR0TBAUwAwEB/zAdBgNVHQ4EFgQUrPzR
7 | kNxOht23Vj9ZbIXIP7j6n5gwCgYIKoZIzj0EAwIDSAAwRQIgHwbGb0x9FU8g6IVW
8 | CFUynCwYpwOZnWF4K3nxakzIM7sCIQDg6IWT1/vSrRyr5nnegLnf9wWzU+MxeS1y
9 | OWq4/889QQ==
10 | -----END CERTIFICATE-----
11 | -----BEGIN CERTIFICATE-----
12 | MIIBVDCB/KADAgECAgkAvTFbncBpYMgwCgYIKoZIzj0EAwIwGDEWMBQGA1UEAxMN
13 | ZXN0RVhURVJOQUxDQTAeFw0xNDEwMDMxOTM0MTFaFw0xNTEwMDMxOTM0MTFaMBgx
14 | FjAUBgNVBAMTDWVzdEVYVEVSTkFMQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNC
15 | AATURFi6QxgfEBUE5Ov3b7+FStbHHsm2sgoINGD98mcSYS7ZMDZ2UfX9YX2757Wr
16 | kPLtJUxYK+J/Vvxzg9XReF6Koy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRe
17 | PYuSiIAmAeUz3+h+0xZ4ioR8rDAKBggqhkjOPQQDAgNHADBEAiBkH+FKou2RzxSk
18 | PbY/78ZiAlLwHb2N2jpHmfBRMsZTZQIgM20bl/8BaDdMxWclXAGL8d5HmHkem3Jq
19 | vwioXSKfmDo=
20 | -----END CERTIFICATE-----
21 |
--------------------------------------------------------------------------------
/example/android/ESTClient/gen/com/cisco/estclient/BuildConfig.java:
--------------------------------------------------------------------------------
1 | /** Automatically generated file. DO NOT MODIFY */
2 | package com.cisco.estclient;
3 |
4 | public final class BuildConfig {
5 | public final static boolean DEBUG = true;
6 | }
--------------------------------------------------------------------------------
/example/android/ESTClient/ic_launcher-web.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/ic_launcher-web.png
--------------------------------------------------------------------------------
/example/android/ESTClient/jni/Android.mk:
--------------------------------------------------------------------------------
1 | # Copyright (C) 2009 The Android Open Source Project
2 | #
3 | # Licensed under the Apache License, Version 2.0 (the "License");
4 | # you may not use this file except in compliance with the License.
5 | # You may obtain a copy of the License at
6 | #
7 | # http://www.apache.org/licenses/LICENSE-2.0
8 | #
9 | # Unless required by applicable law or agreed to in writing, software
10 | # distributed under the License is distributed on an "AS IS" BASIS,
11 | # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 | # See the License for the specific language governing permissions and
13 | # limitations under the License.
14 | #
15 | LOCAL_PATH := $(call my-dir)
16 |
17 | include $(CLEAR_VARS)
18 |
19 | LOCAL_CFLAGS := -g -I/home/foleyj/Iron/Vodaphone/usr/include
20 | #LOCAL_LDFLAGS := -L/nobackup/tmp/Wood/est/android/ssl/lib -L/nobackup/tmp/Wood/est/android/est/lib
21 | LOCAL_LDLIBS := -L/home/foleyj/Iron/Vodaphone/usr/est/lib -L/home/foleyj/Iron/Vodaphone/usr/lib -L. -llog -lest -lsafe -lssl -lcrypto
22 | LOCAL_MODULE := estwrap
23 | LOCAL_SRC_FILES := est_wrapper.c
24 |
25 | include $(BUILD_SHARED_LIBRARY)
26 |
27 |
--------------------------------------------------------------------------------
/example/android/ESTClient/jni/est.h:
--------------------------------------------------------------------------------
1 | ../../../../src/est/est.h
--------------------------------------------------------------------------------
/example/android/ESTClient/libs/android-support-v4.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/libs/android-support-v4.jar
--------------------------------------------------------------------------------
/example/android/ESTClient/proguard-project.txt:
--------------------------------------------------------------------------------
1 | # To enable ProGuard in your project, edit project.properties
2 | # to define the proguard.config property as described in that file.
3 | #
4 | # Add project specific ProGuard rules here.
5 | # By default, the flags in this file are appended to flags specified
6 | # in ${sdk.dir}/tools/proguard/proguard-android.txt
7 | # You can edit the include path and order by changing the ProGuard
8 | # include property in project.properties.
9 | #
10 | # For more details, see
11 | # http://developer.android.com/guide/developing/tools/proguard.html
12 |
13 | # Add any project specific keep options here:
14 |
15 | # If your project uses WebView with JS, uncomment the following
16 | # and specify the fully qualified class name to the JavaScript interface
17 | # class:
18 | #-keepclassmembers class fqcn.of.javascript.interface.for.webview {
19 | # public *;
20 | #}
21 |
--------------------------------------------------------------------------------
/example/android/ESTClient/project.properties:
--------------------------------------------------------------------------------
1 | # This file is automatically generated by Android Tools.
2 | # Do not modify this file -- YOUR CHANGES WILL BE ERASED!
3 | #
4 | # This file must be checked in Version Control Systems.
5 | #
6 | # To customize properties used by the Ant build system edit
7 | # "ant.properties", and override values to adapt the script to your
8 | # project structure.
9 | #
10 | # To enable ProGuard to shrink and obfuscate your code, uncomment this (available properties: sdk.dir, user.home):
11 | #proguard.config=${sdk.dir}/tools/proguard/proguard-android.txt:proguard-project.txt
12 |
13 | # Project target.
14 | target=android-14
15 |
--------------------------------------------------------------------------------
/example/android/ESTClient/res/drawable-hdpi/ic_action_search.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/res/drawable-hdpi/ic_action_search.png
--------------------------------------------------------------------------------
/example/android/ESTClient/res/drawable-hdpi/ic_launcher.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/res/drawable-hdpi/ic_launcher.png
--------------------------------------------------------------------------------
/example/android/ESTClient/res/drawable-ldpi/ic_launcher.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/res/drawable-ldpi/ic_launcher.png
--------------------------------------------------------------------------------
/example/android/ESTClient/res/drawable-mdpi/ic_action_search.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/res/drawable-mdpi/ic_action_search.png
--------------------------------------------------------------------------------
/example/android/ESTClient/res/drawable-mdpi/ic_launcher.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/res/drawable-mdpi/ic_launcher.png
--------------------------------------------------------------------------------
/example/android/ESTClient/res/drawable-xhdpi/ic_action_search.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/res/drawable-xhdpi/ic_action_search.png
--------------------------------------------------------------------------------
/example/android/ESTClient/res/drawable-xhdpi/ic_launcher.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/android/ESTClient/res/drawable-xhdpi/ic_launcher.png
--------------------------------------------------------------------------------
/example/android/ESTClient/res/menu/activity_est.xml:
--------------------------------------------------------------------------------
1 |
7 |
--------------------------------------------------------------------------------
/example/android/ESTClient/res/values-v11/styles.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
--------------------------------------------------------------------------------
/example/android/ESTClient/res/values-v14/styles.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
--------------------------------------------------------------------------------
/example/android/ESTClient/res/values/strings.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 | ESTClient
4 | Settings
5 | EST Client Test
6 | EST Server:
7 | Port#:
8 | PKCS12 Password:
9 | Common Name:
10 | User ID:
11 | Password:
12 |
13 |
--------------------------------------------------------------------------------
/example/android/ESTClient/res/values/styles.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
--------------------------------------------------------------------------------
/example/android/ESTClient/src/com/cisco/estclient/EnrollThread.java:
--------------------------------------------------------------------------------
1 | package com.cisco.estclient;
2 |
3 | import java.io.BufferedReader;
4 | import java.io.IOException;
5 | import java.io.InputStream;
6 | import java.io.InputStreamReader;
7 |
8 | import android.os.Bundle;
9 | import android.os.Handler;
10 | import android.os.Message;
11 |
12 | public class EnrollThread extends Thread {
13 | private Handler hnd;
14 | private String CN;
15 | private String UID;
16 | private String PWD;
17 | private String Server;
18 | private Integer Port;
19 | private byte[] CACerts;
20 |
21 | public EnrollThread (String cn, String uid, String pwd, String server, Integer port, byte []cacerts, Handler h) {
22 | hnd = h;
23 | CN = cn;
24 | UID = uid;
25 | PWD = pwd;
26 | Server = server;
27 | Port = port;
28 | CACerts = cacerts;
29 | }
30 |
31 | static {
32 | System.loadLibrary("estwrap");
33 | }
34 |
35 | public void run () {
36 | byte[] p12 = null;
37 |
38 | p12 = ESTActivity.doEnroll(CN, UID, PWD, Server, Port, CACerts);
39 | notifyCaller(p12);
40 | return;
41 | }
42 |
43 | private void notifyCaller (byte [] data) {
44 | Bundle b = new Bundle();
45 | Message m = hnd.obtainMessage();
46 |
47 | b.putByteArray("Detail", data);
48 | m.setData(b);
49 | hnd.sendMessage(m);
50 | //android.util.Log.v("DGTHREAD", "parent notified");
51 | }
52 |
53 |
54 | }
55 |
--------------------------------------------------------------------------------
/example/android/ESTClient/src/com/cisco/estclient/LoggerThread.java:
--------------------------------------------------------------------------------
1 | package com.cisco.estclient;
2 |
3 |
4 | import java.io.BufferedReader;
5 | import java.io.IOException;
6 | import java.io.InputStreamReader;
7 | import java.io.InputStream;
8 |
9 | import android.os.Bundle;
10 | import android.os.Handler;
11 | import android.os.Message;
12 |
13 | public class LoggerThread extends Thread {
14 | private Handler hnd;
15 |
16 | public LoggerThread (Handler h) {
17 | hnd = h;
18 | }
19 |
20 | public void run () {
21 | Process p = null;
22 | try {
23 | p = Runtime.getRuntime().exec("logcat");
24 | InputStream in = p.getInputStream();
25 | BufferedReader br = new BufferedReader(new InputStreamReader(in));
26 | String line;
27 | while ((line = br.readLine()) != null) {
28 | notifyCaller(line);
29 | }
30 | }
31 | catch (IOException e) {
32 | notifyCaller(e.getMessage());
33 | }
34 | finally {
35 | if (p != null) p.destroy();
36 | }
37 | return;
38 | }
39 |
40 | private void notifyCaller (String detail) {
41 | Bundle b = new Bundle();
42 | Message m = hnd.obtainMessage();
43 |
44 | b.putString("Detail", detail);
45 | m.setData(b);
46 | hnd.sendMessage(m);
47 | //android.util.Log.v("DGTHREAD", "parent notified");
48 | }
49 | }
50 |
--------------------------------------------------------------------------------
/example/android/README:
--------------------------------------------------------------------------------
1 | To build libest for Android, first you'll need to build OpenSSL
2 | for Android and install it to some location. For example, install
3 | OpenSSL to /nobackup/tmp/Wood/est/android/ssl
4 |
5 | Next, set the following environment variables:
6 |
7 | CC=arm-linux-androideabi-gcc
8 | LDFLAGS=-L/nobackup/tmp/Wood/est/android/ssl/lib
9 |
10 | Next, configure using this command:
11 |
12 | ../configure --with-ssl_dir=/nobackup/tmp/Wood/est/android/ssl --prefix=/nobackup/tmp/Wood/est/android/est --host=arm
13 |
14 | Then do the normal make and make install
15 |
16 |
17 |
18 | NOTE: There were some issues with libc that looked to be resolved by
19 | manually adding the following path to CFLAGs in the build/src/Makefile
20 |
21 | -I/home/user/Android/android-ndk-r7/platforms/android-14/arch-arm/usr/include
22 |
--------------------------------------------------------------------------------
/example/client-brski/Makefile.am:
--------------------------------------------------------------------------------
1 | bin_PROGRAMS = estclient_brski
2 | estclient_brski_includedir=$(includedir)/est
3 | estclient_brski_SOURCES = estclient-brski.c ../util/utils.c ../util/jsmn.c
4 | AM_CFLAGS = -I../.. -I$(srcdir)/../../src/est -I$(SSL_CFLAGS) -g
5 | if FREEBSD
6 | DL=
7 | else
8 | DL=-ldl
9 | endif
10 |
11 | if ENABLE_CLIENT_ONLY
12 | estclient_brski_LDFLAGS = -L../../src/est/.libs $(DL) $(PTHREAD) -lest_client -lssl -lcrypto
13 | else
14 | estclient_brski_LDFLAGS = -L../../src/est/.libs $(DL) $(PTHREAD) -lest -lssl -lcrypto
15 | endif
16 |
--------------------------------------------------------------------------------
/example/client-simple/Makefile.am:
--------------------------------------------------------------------------------
1 | bin_PROGRAMS = estclient_simple
2 | estclient_simple_includedir=$(includedir)/est
3 | estclient_simple_SOURCES = estclient-simple.c ../util/utils.c
4 | AM_CFLAGS = -I../.. -I$(srcdir)/../../src/est -I$(SSL_CFLAGS) -g
5 | if FREEBSD
6 | DL=
7 | else
8 | DL=-ldl
9 | endif
10 |
11 | if ENABLE_CLIENT_ONLY
12 | estclient_simple_LDFLAGS = -L../../src/est/.libs $(DL) -lest_client -lssl -lcrypto
13 | else
14 | estclient_simple_LDFLAGS = -L../../src/est/.libs $(DL) -lest -lssl -lcrypto
15 | endif
16 |
--------------------------------------------------------------------------------
/example/client/Makefile.am:
--------------------------------------------------------------------------------
1 | bin_PROGRAMS = estclient
2 | estclient_includedir=$(includedir)/est
3 | estclient_SOURCES = estclient.c ../util/utils.c
4 | AM_CFLAGS = -I../.. -I$(srcdir)/../../src/est -I$(SSL_CFLAGS) -g
5 | if FREEBSD
6 | DL=
7 | else
8 | DL=-ldl
9 | endif
10 |
11 | if DISABLE_PTHREAD
12 | PTHREAD=
13 | else
14 | PTHREAD=-lpthread
15 | endif
16 |
17 | if ENABLE_CLIENT_ONLY
18 | estclient_LDFLAGS = -L../../src/est/.libs $(DL) $(PTHREAD) -lest_client -lssl -lcrypto
19 | else
20 | estclient_LDFLAGS = -L../../src/est/.libs $(DL) $(PTHREAD) -lest -lssl -lcrypto
21 | endif
22 |
--------------------------------------------------------------------------------
/example/client/estclient_keypair:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEIHOhHCnAjcJDWPdEd/JN3HHyqGEFNpg7nkVjCFVKVUy+oAoGCCqGSM49
6 | AwEHoUQDQgAElQospTDybuUvwLlPIRZzRjeVg83hSWNlnYNqP5vLKG8eI8B+4pSD
7 | jasdikyCVn1DYjVhIVSpFVP/wdYyEr+NKA==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/example/proxy/Makefile.am:
--------------------------------------------------------------------------------
1 | bin_PROGRAMS = estproxy
2 | estproxy_SOURCES = estproxy.c ../util/utils.c ../util/simple_server.c
3 | AM_CFLAGS = -I../.. -I$(srcdir)/../../src/est -I$(SSL_CFLAGS) -g
4 | if FREEBSD
5 | DL=
6 | else
7 | DL=-ldl
8 | endif
9 |
10 | if DISABLE_PTHREAD
11 | PTHREAD=
12 | else
13 | PTHREAD=-lpthread
14 | endif
15 |
16 | estproxy_LDFLAGS = -L../../src/est/.libs $(DL) $(PTHREAD) -lest -lssl -lcrypto
17 |
18 | EXTRA_DIST = createRA.sh runproxy.sh estExampleCA.cnf
19 |
--------------------------------------------------------------------------------
/example/proxy/createRA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 |
3 | # default variables and config options
4 | EST_SCRIPTNAME=$0
5 | EST_OPENSSL_CACNF=./estExampleCA.cnf
6 | EST_SERVER_SUBJ="/CN=127.0.0.1"
7 | EST_SERVER_CERTREQ=tmp/proxy-csr.pem
8 | EST_SERVER_CERT=proxy-cert.pem
9 | EST_SERVER_KEY=proxy-key.pem
10 | EST_ECPARMS=tmp/ec.pem
11 | OPENSSLCMD=openssl
12 |
13 | function iferrorlogandexit ()
14 | {
15 | if [ $? -ne 0 ] ; then
16 | echo "###########..EXIT..##########"
17 | echo "SCRIPT $EST_SCRIPTNAME EXIT: $1 ($2)"
18 | echo "###########^^EXIT^^##########"
19 | echo ""
20 | exit $2
21 | fi
22 | }
23 |
24 | if [ -e tmp ] ; then
25 | rm -r tmp
26 | fi
27 | mkdir tmp
28 |
29 | eval $OPENSSLCMD ecparam -out $EST_ECPARMS -name prime256v1 -genkey
30 | eval $OPENSSLCMD ecparam -in $EST_ECPARMS -check
31 |
32 | # Create a certificate for our est server
33 | # TODO: add extension for est server
34 | echo "#################################################################"
35 | echo "####(Re)creating a certificate for our RA to use"
36 | echo "#################################################################"
37 | # re-using the same NEWKEY_PARAM as is used for our CA
38 | eval $OPENSSLCMD req -new -nodes -out $EST_SERVER_CERTREQ -newkey ec:$EST_ECPARMS -keyout $EST_SERVER_KEY -subj $EST_SERVER_SUBJ -config $EST_OPENSSL_CACNF
39 | iferrorlogandexit "Unable to create est server CSR" 1
40 | $OPENSSLCMD ca -out $EST_SERVER_CERT -batch -config $EST_OPENSSL_CACNF -infiles $EST_SERVER_CERTREQ
41 | iferrorlogandexit "Unable to create RA certificate" 1
42 | $OPENSSLCMD x509 -in $EST_SERVER_CERT -text
43 |
--------------------------------------------------------------------------------
/example/proxy/runproxy.bat:
--------------------------------------------------------------------------------
1 | :: runproxy.bat is a direct port of runproxy.sh
2 |
3 | :: Make sure the est.dll & openSSL dlls are in the %PATH%
4 |
5 | @echo off
6 | set EST_TRUSTED_CERTS=..\server\trustedcerts.crt
7 | set EST_CACERTS_RESP=..\server\estCA\cacert.crt
8 |
9 | :: estproxy.exe is placed by gradle under the example\build\exe\estproxy
10 | :: directory. If it's not present here or it doesn't match the gradle
11 | :: version then it is copied over.
12 | set GRADLE_DIR=..\build\exe\estproxy
13 | FC /b %GRADLE_DIR%\estproxy.exe .\estproxy.exe > NUL
14 | if %ERRORLEVEL% neq 0 (
15 | copy /b /y /v %GRADLE_DIR%\estproxy.exe . > NUL
16 | )
17 |
18 | .\estproxy -c .\proxy-cert.pem -k .\proxy-key.pem -s 127.0.0.1 -p 8085 -r estrealm -v
19 |
--------------------------------------------------------------------------------
/example/proxy/runproxy.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | ${OPENSSL_DIR:=/usr/local/ssl}
4 | ${EST_DIR:=/usr/local/est}
5 |
6 | export EST_TRUSTED_CERTS=../server/trustedcerts.crt
7 | export EST_CACERTS_RESP=../server/estCA/cacert.crt
8 | export LD_LIBRARY_PATH=$LD_LIBRARY_PATH:$OPENSSL_DIR/lib:$EST_DIR/lib
9 |
10 | ./estproxy -c ./proxy-cert.pem -k ./proxy-key.pem -s 127.0.0.1 -p 8085 -r estrealm -v
11 |
--------------------------------------------------------------------------------
/example/server/Makefile.am:
--------------------------------------------------------------------------------
1 | bin_PROGRAMS = estserver
2 | estclient_includedir=$(includedir)/est
3 | estserver_SOURCES = estserver.c ossl_srv.c ../util/utils.c ../util/simple_server.c ../util/jsmn.c
4 | AM_CFLAGS = -I../.. -I$(srcdir)/../../src/est -I$(SSL_CFLAGS) -g
5 | if FREEBSD
6 | DL=
7 | else
8 | DL=-ldl
9 | endif
10 |
11 | if DISABLE_PTHREAD
12 | PTHREAD=
13 | else
14 | PTHREAD=-lpthread
15 | endif
16 |
17 | estserver_LDFLAGS = -L../../src/est/.libs $(DL) $(PTHREAD) -lest -lssl -lcrypto
18 |
19 | EXTRA_DIST = ossl_srv.h apps.h createCA.sh createCA.bat ext.cnf ESTcommon.sh runserver.sh estExampleCA.cnf extExampleCA.cnf ESTcommon_masa.sh createMASA.sh masa.cnf masa_ExampleCA.cnf
20 |
21 |
--------------------------------------------------------------------------------
/example/server/ext.cnf:
--------------------------------------------------------------------------------
1 | # Extensions to add to a certificate request
2 |
3 | basicConstraints = CA:FALSE
4 | keyUsage = nonRepudiation, digitalSignature, keyEncipherment
5 | subjectAltName = @alt_names
6 | crlDistributionPoints=URI:http://example.com/crl.pem
7 |
8 | [alt_names]
9 | DNS.1 = localhost
10 | DNS.2 = ip6-localhost
11 | IP.1 = 127.0.0.1
12 | IP.2 = ::1
13 |
--------------------------------------------------------------------------------
/example/server/masa.cnf:
--------------------------------------------------------------------------------
1 | # Extensions to add to a certificate request
2 |
3 | basicConstraints = CA:FALSE
4 | keyUsage = nonRepudiation, digitalSignature, keyEncipherment
5 | subjectAltName = @alt_names
6 | crlDistributionPoints=URI:http://example.com/crl.pem
7 |
8 | [alt_names]
9 | DNS.1 = localhost
10 | DNS.2 = ip6-localhost
11 | IP.1 = 127.0.0.1
12 | IP.2 = ::1
13 |
--------------------------------------------------------------------------------
/example/server/mfgCAs/certgen/__init__.py:
--------------------------------------------------------------------------------
1 | print('Invoking __init__.py for %s' % __name__)
2 | from ESTCommon import *
3 | from MfgCommon import *
--------------------------------------------------------------------------------
/example/server/mfgCAs/ext.cnf:
--------------------------------------------------------------------------------
1 | # Extensions to add to a certificate request
2 |
3 | basicConstraints = CA:FALSE
4 | keyUsage = nonRepudiation, digitalSignature, keyEncipherment
5 | subjectAltName = @alt_names
6 | crlDistributionPoints=URI:http://example.com/crl.pem
7 |
8 | [alt_names]
9 | DNS.1 = localhost
10 | DNS.2 = ip6-localhost
11 | IP.1 = 127.0.0.1
12 | IP.2 = ::1
13 |
--------------------------------------------------------------------------------
/example/server/ossl_srv.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * ossl_srv.h - Entry point definitions into the OpenSSL
3 | * interface for EST server operations.
4 | *
5 | * November, 2012
6 | *
7 | * Copyright (c) 2012 by cisco Systems, Inc.
8 | * All rights reserved.
9 | *------------------------------------------------------------------
10 | */
11 | #ifndef HEADER_OSSL_SRV_H
12 | #define HEADER_OSSL_SRV_H
13 |
14 | BIO * ossl_simple_enroll(unsigned char *p10buf, int p10len);
15 |
16 | #endif
17 |
--------------------------------------------------------------------------------
/example/server/passwd.srpv:
--------------------------------------------------------------------------------
1 | V b66n5fz1DEzp1syusQ2o/7ruO/Wv4W3yTUUQisLpExMlQOf7KULnsETxVCTXyVvKhCb0HacZaZ8DVvRpNtg1Y6y8f0pjkqtHFq7ffnZW2NzcG8inRBA.anm71LnoFcBzI.RMkH2ocBEd9mBwsQflomkbSm94KM8deT/0sfaVqnFwAkwGxlbP/L4XEWLUHg6icOaL1S6Ll33BddzZDYnrZHGTrAuX9AR2tBFy2uPl5YmP2.yOt.q.o8sGq97NeBCu 8fAbD5C3eqehvL110JpeeLNQZe/ srpuser 1536
2 | V LrufMHCnflYwfPsD01KfZ9AeEeNQEvyJ9iV29C73v1TztsUgNXc1ihKYJcLS8CktZD8eVd3UrFJlwcf.NDpplrInporWtoqA/OWyLlY1/r8MfTxnqqE1eAVU7xGy5lq/UXep9OU8AihELXw5P7byC9ulV4vwqnuOiPWv.7lH18na3jXSgrN9PLRomhhilcA2r5c49gPus72c/iDBSq0gf4FCatCKgpt5otS7otpU.VuirNDCunee.PPBB7E4U3PK 6SxlzGEqEcQZpPd07yazgLc/r0M jsmith 1536
3 | V MxdwtMPvBoDyxd3C3WepplQniLG8piCGl.hcGRH6ULxgoNa6jJIGSCQfrCxgRswccuL0gSUBYT8ct.NV6aJB3Xj7SbbIxKACpQrRHwIR2/.KScVd2xxy2O.rBc/KwzCcYlphr.9XMbDSoqsbb4ORkAxR/n8U8dk6blL8mRqJq9AIbZWHYzX3.PRHvFrkDSitANapIRQlKDj/Xv6GEFgRUZg2OAt9Mu5h2GRSaVELT/YwvaS/U/qy/JTN0vhHjYTC EPaXGwBNQrWXVrwvY8lbGQX8.DX estuser 1536
4 |
--------------------------------------------------------------------------------
/example/server/runserver.bat:
--------------------------------------------------------------------------------
1 | :: runserver.bat is a direct port of runserver.sh
2 |
3 | :: Make sure the est.dll & openSSL dlls are in the %PATH%
4 |
5 | @echo off
6 | set EST_TRUSTED_CERTS=.\trustedcerts.crt
7 |
8 | ::set EST_TRUSTED_CERTS=.\estCA\cacertandcrl.crt
9 |
10 | set EST_CACERTS_RESP=.\estCA\cacert.crt
11 | set EST_OPENSSL_CACONFIG=.\estExampleCA.cnf
12 |
13 | ::set EST_CSR_ATTR=MGwGBysGAQEBARYwIgYDiDcBMRsTGVBhcnNlIFNFVCBhcyAyLjk5OS4xIGRhdGEwJwYDiDcCMSAGA4g3AxMZUGFyc2UgU0VUIGFzIDIuOTk5LjIgZGF0YQYJKyQDAwIIAQELBglghkgBZQMEAgI=
14 |
15 | :: estserver.exe is placed by gradle under the example\build\exe\estserver
16 | :: directory. If it's not present here or it doesn't match the gradle
17 | :: version then it is copied over.
18 | set GRADLE_DIR=..\build\exe\estserver
19 | FC /b %GRADLE_DIR%\estserver.exe .\estserver.exe > NUL
20 | if %ERRORLEVEL% neq 0 (
21 | copy /b /y /v %GRADLE_DIR%\estserver.exe . > NUL
22 | )
23 |
24 | .\estserver -c estCA\private\estservercertandkey.pem^
25 | -k estCA\private\estservercertandkey.pem -r estrealm -v
26 |
--------------------------------------------------------------------------------
/example/server/runserver.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | export EST_TRUSTED_CERTS=./trustedcerts.crt
4 | #export EST_TRUSTED_CERTS=./estCA/cacertandcrl.crt
5 | export EST_CACERTS_RESP=./estCA/cacert.crt
6 | export EST_OPENSSL_CACONFIG=./estExampleCA.cnf
7 | #export EST_CSR_ATTR="MGwGBysGAQEBARYwIgYDiDcBMRsTGVBhcnNlIFNFVCBhcyAyLjk5OS4xIGRhdGEwJwYDiDcCMSAGA4g3AxMZUGFyc2UgU0VUIGFzIDIuOTk5LjIgZGF0YQYJKyQDAwIIAQELBglghkgBZQMEAgI="
8 |
9 | ./estserver -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v
10 |
--------------------------------------------------------------------------------
/example/server/utkeystore:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/example/server/utkeystore
--------------------------------------------------------------------------------
/example/util/jsmn.h:
--------------------------------------------------------------------------------
1 | #ifndef __JSMN_H_
2 | #define __JSMN_H_
3 |
4 | #include
5 |
6 | #ifdef __cplusplus
7 | extern "C" {
8 | #endif
9 |
10 | /**
11 | * JSON type identifier. Basic types are:
12 | * o Object
13 | * o Array
14 | * o String
15 | * o Other primitive: number, boolean (true/false) or null
16 | */
17 | typedef enum {
18 | JSMN_UNDEFINED = 0,
19 | JSMN_OBJECT = 1,
20 | JSMN_ARRAY = 2,
21 | JSMN_STRING = 3,
22 | JSMN_PRIMITIVE = 4
23 | } jsmntype_t;
24 |
25 | enum jsmnerr {
26 | /* Not enough tokens were provided */
27 | JSMN_ERROR_NOMEM = -1,
28 | /* Invalid character inside JSON string */
29 | JSMN_ERROR_INVAL = -2,
30 | /* The string is not a full JSON packet, more bytes expected */
31 | JSMN_ERROR_PART = -3
32 | };
33 |
34 | /**
35 | * JSON token description.
36 | * type type (object, array, string etc.)
37 | * start start position in JSON data string
38 | * end end position in JSON data string
39 | */
40 | typedef struct {
41 | jsmntype_t type;
42 | int start;
43 | int end;
44 | int size;
45 | #ifdef JSMN_PARENT_LINKS
46 | int parent;
47 | #endif
48 | } jsmntok_t;
49 |
50 | /**
51 | * JSON parser. Contains an array of token blocks available. Also stores
52 | * the string being parsed now and current position in that string
53 | */
54 | typedef struct {
55 | unsigned int pos; /* offset in the JSON string */
56 | unsigned int toknext; /* next token to allocate */
57 | int toksuper; /* superior token node, e.g parent object or array */
58 | } jsmn_parser;
59 |
60 | /**
61 | * Create JSON parser over an array of tokens
62 | */
63 | void jsmn_init(jsmn_parser *parser);
64 |
65 | /**
66 | * Run JSON parser. It parses a JSON data string into and array of tokens, each describing
67 | * a single JSON object.
68 | */
69 | int jsmn_parse(jsmn_parser *parser, const char *js, size_t len,
70 | jsmntok_t *tokens, unsigned int num_tokens);
71 |
72 | #ifdef __cplusplus
73 | }
74 | #endif
75 |
76 | #endif /* __JSMN_H_ */
77 |
--------------------------------------------------------------------------------
/example/util/simple_server.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * simple_server.h - This is a very simple multi-threaded TCP
3 | * server used by the example EST server and EST
4 | * proxy applications.
5 | *
6 | * August, 2013
7 | *
8 | * Copyright (c) 2013-2014 by cisco Systems, Inc.
9 | * All rights reserved.
10 | **------------------------------------------------------------------
11 | */
12 | #ifndef HEADER_SIMPLE_SERVER_H
13 | #define HEADER_SIMPLE_SERVER_H
14 | #ifdef HAVE_LIBCOAP
15 | void start_simple_server (EST_CTX *ectx, int port, int delay, int v6);
16 | #else
17 | void start_simple_server(EST_CTX *ectx, int port, int delay, int v6);
18 | #endif
19 | #endif
20 |
--------------------------------------------------------------------------------
/example/util/utils.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * utils.h - Generic functions used by all the example apps
3 | *
4 | * August, 2013
5 | *
6 | * Copyright (c) 2013, 2016 by cisco Systems, Inc.
7 | * All rights reserved.
8 | *------------------------------------------------------------------
9 | */
10 |
11 | #ifndef HEADER_UTILS_H
12 | #define HEADER_UTILS_H
13 |
14 | #define MAX_UID_LEN 255
15 | #define MAX_PWD_LEN 255
16 |
17 | void ossl_dump_ssl_errors ();
18 | int read_binary_file(char *filename, unsigned char **contents);
19 | void write_binary_file(char *filename, unsigned char *contents, int len);
20 | void dumpbin(unsigned char *buf, int len);
21 | EVP_PKEY *read_private_key(const char *key_file, pem_password_cb *cb);
22 | EVP_PKEY *load_private_key (const unsigned char *key, int key_len, int format, pem_password_cb *cb);
23 | #define load_clear_private_key_PEM(key) load_private_key((unsigned char*)(key),strlen(key),EST_FORMAT_PEM, NULL)
24 | char *private_key_to_PEM (const EVP_PKEY* pkey, pem_password_cb *cb);
25 | char *generate_private_EC_key (int curve_nid, pem_password_cb *cb);
26 | char *generate_private_RSA_key (int key_size, pem_password_cb *cb);
27 | #endif
28 |
29 |
--------------------------------------------------------------------------------
/example/windows_util/getopt.h:
--------------------------------------------------------------------------------
1 | #ifndef __GETOPT_H__
2 | #define __GETOPT_H__
3 |
4 | #ifdef __cplusplus
5 | extern "C" {
6 | #endif
7 |
8 | extern int opterr; /* if error message should be printed */
9 | extern int optind; /* index into parent argv vector */
10 | extern int optopt; /* character checked for validity */
11 | extern int optreset; /* reset getopt */
12 | extern char *optarg; /* argument associated with option */
13 |
14 | struct option
15 | {
16 | const char *name;
17 | int has_arg;
18 | int *flag;
19 | int val;
20 | };
21 |
22 | #define no_argument 0
23 | #define required_argument 1
24 | #define optional_argument 2
25 |
26 | int getopt(int, char**, char*);
27 | int getopt_long(int, char**, char*, struct option*, int*);
28 |
29 | #ifdef __cplusplus
30 | }
31 | #endif
32 |
33 | #endif /* __GETOPT_H__ */
34 |
--------------------------------------------------------------------------------
/java/README:
--------------------------------------------------------------------------------
1 | This directory contains the JEST project, which is a reduced functionality
2 | reference implementation of a Java EST client using a JNI layer to libEST.
3 | At this time, it has been decided that no further development will be done
4 | on JEST. For users who require a more robust implemenation of EST in Java,
5 | projects like Jester (https://github.com/jscep/jester) which aim to be 100%
6 | compatible with libest would be a suggested alternative (Please note that
7 | this is not an endorsement for Jester and we will not provide support for it).
8 | JEST requires you have a JDK and Apache Ant installed on your system.
9 |
10 | Getting started
11 | ---------------
12 | 1. Set the JAVA_HOME environment variable to the location of your JDK
13 | 2. ./configure --with-ssl-dir=/your/path/to/install --with-safec-dir=/your/path/to/install --prefix=/where/you/want/it/installed --enable-jni
14 | make clean
15 | make -j4
16 | make install
17 | 3. Navigate down to the src directory and type:
18 |
19 | ant
20 | ant -f buildjar.xml
21 |
22 | To build the javadoc:
23 |
24 | javadoc -d ./doc -sourcepath . -subpackages com -exclude com.cisco.c3m.est.test.DT:com.cisco.c3m.est.test.UT
25 |
26 |
27 |
28 |
29 |
--------------------------------------------------------------------------------
/java/jni/.project:
--------------------------------------------------------------------------------
1 |
2 |
3 | libciscojest
4 |
5 |
6 |
7 |
8 |
9 | org.eclipse.cdt.managedbuilder.core.genmakebuilder
10 | clean,full,incremental,
11 |
12 |
13 |
14 |
15 | org.eclipse.cdt.managedbuilder.core.ScannerConfigBuilder
16 | full,incremental,
17 |
18 |
19 |
20 |
21 |
22 | org.eclipse.cdt.core.cnature
23 | org.eclipse.cdt.managedbuilder.core.managedBuildNature
24 | org.eclipse.cdt.managedbuilder.core.ScannerConfigNature
25 |
26 |
27 |
--------------------------------------------------------------------------------
/java/jni/Debug/makefile:
--------------------------------------------------------------------------------
1 | ################################################################################
2 | # Automatically-generated file. Do not edit!
3 | ################################################################################
4 |
5 | -include ../makefile.init
6 |
7 | RM := rm -rf
8 |
9 | # All of the sources participating in the build are defined here
10 | -include sources.mk
11 | -include subdir.mk
12 | -include objects.mk
13 |
14 | ifneq ($(MAKECMDGOALS),clean)
15 | ifneq ($(strip $(C_DEPS)),)
16 | -include $(C_DEPS)
17 | endif
18 | endif
19 |
20 | -include ../makefile.defs
21 |
22 | # Add inputs and outputs from these tool invocations to the build variables
23 |
24 | # All Target
25 | all: libciscojest.so
26 |
27 | # Tool invocations
28 | libciscojest.so: $(OBJS) $(USER_OBJS)
29 | @echo 'Building target: $@'
30 | @echo 'Invoking: GCC C Linker'
31 | gcc -L"${CISCOSSL_HOME}/lib" -L"${EST_HOME}/lib" -shared -o "libciscojest.so" $(OBJS) $(USER_OBJS) $(LIBS)
32 | @echo 'Finished building target: $@'
33 | @echo ' '
34 |
35 | # Other Targets
36 | clean:
37 | -$(RM) $(OBJS)$(C_DEPS)$(LIBRARIES) libciscojest.so
38 | -@echo ' '
39 |
40 | .PHONY: all clean dependents
41 | .SECONDARY:
42 |
43 | -include ../makefile.targets
44 |
--------------------------------------------------------------------------------
/java/jni/Debug/objects.mk:
--------------------------------------------------------------------------------
1 | ################################################################################
2 | # Automatically-generated file. Do not edit!
3 | ################################################################################
4 |
5 | USER_OBJS :=
6 |
7 | LIBS := -lest
8 |
9 |
--------------------------------------------------------------------------------
/java/jni/Debug/sources.mk:
--------------------------------------------------------------------------------
1 | ################################################################################
2 | # Automatically-generated file. Do not edit!
3 | ################################################################################
4 |
5 | O_SRCS :=
6 | C_SRCS :=
7 | S_UPPER_SRCS :=
8 | OBJ_SRCS :=
9 | ASM_SRCS :=
10 | OBJS :=
11 | C_DEPS :=
12 | LIBRARIES :=
13 |
14 | # Every subdirectory with source files must be described here
15 | SUBDIRS := \
16 | . \
17 |
18 |
--------------------------------------------------------------------------------
/java/jni/Debug/subdir.mk:
--------------------------------------------------------------------------------
1 | ################################################################################
2 | # Automatically-generated file. Do not edit!
3 | ################################################################################
4 |
5 | # Add inputs and outputs from these tool invocations to the build variables
6 | C_SRCS += \
7 | ../client.c
8 |
9 | OBJS += \
10 | ./client.o
11 |
12 | C_DEPS += \
13 | ./client.d
14 |
15 |
16 | # Each subdirectory must supply rules for building sources it contributes
17 | %.o: ../%.c
18 | @echo 'Building file: $<'
19 | @echo 'Invoking: GCC C Compiler'
20 | gcc -I../../../src/safe_lib/include -I"${CISCOSSL_HOME}/include" -I"${JAVA_HOME}/include" -I"${JAVA_HOME}/include/linux" -I"${EST_HOME}/include" -fPIC -O0 -g3 -Wall -c -fmessage-length=0 -MMD -MP -MF"$(@:%.o=%.d)" -MT"$(@:%.o=%.d)" -o "$@" "$<"
21 | @echo 'Finished building: $<'
22 | @echo ' '
23 |
24 |
25 |
--------------------------------------------------------------------------------
/java/jni/Makefile.am:
--------------------------------------------------------------------------------
1 | if ENABLE_JNI
2 | if JAVA_HOME_SET
3 | lib_LTLIBRARIES = libciscojest.la
4 | AM_CFLAGS = -I$(JAVA_HOME)/include -I$(JAVA_HOME)/include/linux -I$(SSL_CFLAGS) -I../.. -I$(srcdir)/../../src -I$(SAFEC_CFLAGS)/include
5 | libciscojest_la_LDFLAGS = -release $(PACKAGE_VERSION)
6 | libciscojest_la_SOURCES = client.c
7 | #if ENABLE_CLIENT_ONLY
8 | #libciscojest_la_LIBADD = ../../src/est/libest_client.la $(SAFEC_LDFLAGS)/libciscosafec.so
9 | #else
10 | #libciscojest_la_LIBADD = ../../src/est/libest.la $(SAFEC_LDFLAGS)/libciscosafec.so
11 | #endif
12 | if ENABLE_CLIENT_ONLY
13 | libciscojest_la_LIBADD = ../../src/est/libest_client.la
14 | else
15 | libciscojest_la_LIBADD = ../../src/est/libest.la
16 | endif
17 |
18 | library_includedir=$(includedir)/est
19 | library_include_HEADERS = jest.h
20 | #EXTRA_DIST = jest.h
21 | else
22 | $(warning JAVA_HOME is not set, JNI layer will not be built.)
23 | endif
24 | endif
25 |
--------------------------------------------------------------------------------
/java/lib/bcpkix-jdk15on-151.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/bcpkix-jdk15on-151.jar
--------------------------------------------------------------------------------
/java/lib/bcprov-ext-jdk15on-151.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/bcprov-ext-jdk15on-151.jar
--------------------------------------------------------------------------------
/java/lib/jacoco/jacocoagent.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/jacoco/jacocoagent.jar
--------------------------------------------------------------------------------
/java/lib/jacoco/jacocoant.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/jacoco/jacocoant.jar
--------------------------------------------------------------------------------
/java/lib/jacoco/org.jacoco.agent-0.7.1.201405082137.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/jacoco/org.jacoco.agent-0.7.1.201405082137.jar
--------------------------------------------------------------------------------
/java/lib/jacoco/org.jacoco.ant-0.7.1.201405082137.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/jacoco/org.jacoco.ant-0.7.1.201405082137.jar
--------------------------------------------------------------------------------
/java/lib/jacoco/org.jacoco.core-0.7.1.201405082137.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/jacoco/org.jacoco.core-0.7.1.201405082137.jar
--------------------------------------------------------------------------------
/java/lib/jacoco/org.jacoco.report-0.7.1.201405082137.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/jacoco/org.jacoco.report-0.7.1.201405082137.jar
--------------------------------------------------------------------------------
/java/lib/junit.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/junit.jar
--------------------------------------------------------------------------------
/java/lib/org.hamcrest.core_1.1.0.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/org.hamcrest.core_1.1.0.jar
--------------------------------------------------------------------------------
/java/lib/runone.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/java/lib/runone.jar
--------------------------------------------------------------------------------
/java/src/.classpath:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
--------------------------------------------------------------------------------
/java/src/.externalToolBuilders/builder1.launch:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/java/src/.externalToolBuilders/buildjar.launch:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/java/src/.project:
--------------------------------------------------------------------------------
1 |
2 |
3 | CiscoJEST
4 |
5 |
6 |
7 |
8 |
9 | org.eclipse.jdt.core.javabuilder
10 |
11 |
12 |
13 |
14 | org.eclipse.ui.externaltools.ExternalToolBuilder
15 | full,incremental,
16 |
17 |
18 | LaunchConfigHandle
19 | <project>/.externalToolBuilders/builder1.launch
20 |
21 |
22 |
23 |
24 | org.eclipse.ui.externaltools.ExternalToolBuilder
25 | full,incremental,
26 |
27 |
28 | LaunchConfigHandle
29 | <project>/.externalToolBuilders/buildjar.launch
30 |
31 |
32 |
33 |
34 |
35 | org.eclipse.jdt.core.javanature
36 |
37 |
38 |
--------------------------------------------------------------------------------
/java/src/.settings/org.eclipse.ltk.core.refactoring.prefs:
--------------------------------------------------------------------------------
1 | eclipse.preferences.version=1
2 | org.eclipse.ltk.core.refactoring.enable.project.refactoring.history=false
3 |
--------------------------------------------------------------------------------
/java/src/buildjar.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/BufferSizeException.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est;
2 |
3 | /*
4 | * BufferSizeException.java
5 | *
6 | * Created on: Aug 15, 2014
7 | * Author: foleyj
8 | *
9 | * Copyright (c) 2014 by cisco Systems, Inc.
10 | * All rights reserved.
11 | *
12 | */
13 | /**
14 | * This class is used to generate an exception when the buffer that's used to
15 | * hold the response from the EST server is too small to fit the entire
16 | * response. This notifies the application layer that the maximum buffer size
17 | * should be increased and the request should be tried again. The setNativeMaxCertLength()
18 | * method on the ESTClient class is used to increase the maximum buffer size.
19 | *
20 | * @author foleyj
21 | *
22 | */
23 | public class BufferSizeException extends Exception {
24 |
25 | /**
26 | *
27 | */
28 | private static final long serialVersionUID = 3061075711454049221L;
29 |
30 | public BufferSizeException(String message) {
31 | super(message);
32 | }
33 | }
34 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/CACertsException.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est;
2 |
3 | /*
4 | * CACertsException.java
5 | *
6 | * Created on: Aug 12, 2014
7 | * Author: foleyj
8 | *
9 | * Copyright (c) 2014 by cisco Systems, Inc.
10 | * All rights reserved.
11 | *
12 | */
13 |
14 | /**
15 | * This exception indicates a problem occurred in the native layer during
16 | * the /cacerts operation. Details on the error can be found in the
17 | * stderr output.
18 | *
19 | * @author foleyj
20 | *
21 | */
22 | public class CACertsException extends Exception {
23 |
24 | /**
25 | *
26 | */
27 | private static final long serialVersionUID = 4282714673357869389L;
28 |
29 | public CACertsException(String message) {
30 | super(message);
31 | }
32 | }
33 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/EncodingException.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est;
2 |
3 | /*
4 | * EncodingException.java
5 | *
6 | * Created on: July 1, 2014
7 | * Author: foleyj
8 | *
9 | * Copyright (c) 2014 by cisco Systems, Inc.
10 | * All rights reserved.
11 | *
12 | */
13 |
14 | public class EncodingException extends Exception {
15 | /**
16 | *
17 | */
18 | private static final long serialVersionUID = -6015972426836329665L;
19 |
20 | public EncodingException(String message) {
21 | super(message);
22 | }
23 | }
24 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/EnrollException.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est;
2 |
3 | /*
4 | * EnrollException.java
5 | *
6 | * Created on: July 1, 2014
7 | * Author: foleyj
8 | *
9 | * Copyright (c) 2014 by cisco Systems, Inc.
10 | * All rights reserved.
11 | *
12 | */
13 |
14 | /**
15 | * This class is used to generate exceptions from the libest library in the native
16 | * layer. When this exception is thrown, libest logs details about the error to
17 | * stderr. There are a large variety of reasons that would generate this exception.
18 | * These reasons vary from network issues, such as host name resolution failure, to
19 | * certificate and key pair inconsistency issues. The libEST documentation provides
20 | * a detailed description of the various errors that can be generated at the native
21 | * layer.
22 | *
23 | * @author foleyj
24 | *
25 | */
26 | public class EnrollException extends Exception {
27 | /**
28 | *
29 | */
30 | private static final long serialVersionUID = 9036583857339828180L;
31 |
32 | public EnrollException(String message) {
33 | super(message);
34 | }
35 | }
36 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/EnrollRetryAfterException.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est;
2 |
3 | /*
4 | * EnrollException.java
5 | *
6 | * Created on: July 1, 2014
7 | * Author: foleyj
8 | *
9 | * Copyright (c) 2014 by cisco Systems, Inc.
10 | * All rights reserved.
11 | *
12 | */
13 |
14 | /**
15 | * This class is used to generate an exception when the EST server is not automatically
16 | * approving the enrollment of the PKCS10 CSR. This would occur if the CA is configured
17 | * to require manual approval of every certificate by a security officer. When this occurs
18 | * the EST server will notify the EST client that it should retry the enrollment request
19 | * at a later time. This allows time for the security officer to manually approve the
20 | * certificate request. When the EST client retries the enrollment request, the same CSR and
21 | * key pair should be used. The application using CiscoJEST is responsible for persisting
22 | * the CSR and key pair between the initial enrollment request and the retry request.
23 | *
24 | * @author foleyj
25 | *
26 | */
27 | public class EnrollRetryAfterException extends Exception {
28 | /**
29 | *
30 | */
31 | private static final long serialVersionUID = 2302815367805705598L;
32 |
33 | public EnrollRetryAfterException(String message) {
34 | super(message);
35 | }
36 | }
37 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/PKCS10CreationException.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est;
2 | /*
3 | * PKCS10CreationException.java
4 | *
5 | * Created on: July 1, 2014
6 | * Author: foleyj
7 | *
8 | * Copyright (c) 2014 by cisco Systems, Inc.
9 | * All rights reserved.
10 | *
11 | */
12 |
13 | /**
14 | * This class is used to generate an exception when there is a problem creating
15 | * a new PKCS10 CSR.
16 | *
17 | * @author foleyj
18 | *
19 | */
20 | public class PKCS10CreationException extends Exception {
21 | /**
22 | *
23 | */
24 | private static final long serialVersionUID = -8276158514417428523L;
25 |
26 | public PKCS10CreationException(String message) {
27 | super(message);
28 | }
29 | }
30 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/DT/FIPSTest.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est.test.DT;
2 |
3 | import static org.junit.Assert.assertNotNull;
4 | import static org.junit.Assert.fail;
5 |
6 | import org.junit.After;
7 | import org.junit.AfterClass;
8 | import org.junit.Before;
9 | import org.junit.BeforeClass;
10 | import org.junit.Test;
11 |
12 | import com.cisco.c3m.est.ESTClient;
13 |
14 |
15 | public class FIPSTest {
16 | @BeforeClass
17 | public static void setUpBeforeClass() throws Exception {
18 | System.out.println("Initializing FIPSTest for " + ESTClient.getVersion() + "...");
19 | }
20 |
21 | @AfterClass
22 | public static void tearDownAfterClass() throws Exception {
23 | System.out.println("Test completed.");
24 | }
25 |
26 | @Before
27 | public void setUp() throws Exception {
28 | }
29 |
30 | @After
31 | public void tearDown() throws Exception {
32 | Thread.sleep(3500);
33 | }
34 |
35 | @Test
36 | public void testEnableFIPS() {
37 | ESTClient ec = new ESTClient();
38 | assertNotNull(ec);
39 | try {
40 | ec.enableFIPS();
41 | } catch (Exception e) {
42 | fail(e.getMessage());
43 | }
44 | }
45 |
46 | }
47 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/DT/PortFinder.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est.test.DT;
2 |
3 | import java.io.IOException;
4 | import java.net.ServerSocket;
5 | import java.util.HashSet;
6 |
7 | /*
8 | * Code taken from the web at stackoverflow.com
9 | *
10 | */
11 |
12 | public class PortFinder {
13 |
14 | /**
15 | * If you only need the one port you can use this. No need to instantiate the class
16 | */
17 | public static int findFreePort() throws IOException {
18 | ServerSocket socket = new ServerSocket(0);
19 | try {
20 | return socket.getLocalPort();
21 | } finally {
22 | try {
23 | socket.close();
24 | } catch (IOException e) {
25 | }
26 | }
27 | }
28 |
29 | private static HashSet used = new HashSet();
30 |
31 | /**
32 | * Finds a port that is currently free and is guaranteed to be different from any of the
33 | * port numbers previously returned by this PortFinder instance.
34 | */
35 | public static synchronized int findUniqueFreePort() throws IOException {
36 | int port;
37 | do {
38 | port = findFreePort();
39 | } while (used.contains(port));
40 | used.add(port);
41 | return port;
42 | }
43 |
44 | }
45 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/DT/dt_start_estserver.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # Name: dt_start_estserver.sh
3 |
4 | echo "Starting dt_start_estserver.sh ..."
5 |
6 | cd $WORKSPACE/example/server
7 |
8 | # this is the main estserver instance that should be used for simple enrolls
9 | $WORKSPACE/install/bin/estserver -o -p $EST_DT0_PORT1 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
10 | sleep 1
11 | # the following estserver is set to reject the first attempted connection so we can test catching exceptions
12 | $WORKSPACE/install/bin/estserver -p $EST_DT0_PORT2 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 -m 3600 &
13 | sleep 1
14 | # this estserver should be started with -h to cause it to request and accept http digest authentication
15 | $WORKSPACE/install/bin/estserver -h -p $EST_DT0_DIGEST --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
16 | sleep 1
17 | # this is the estserver instance without "-o" that should be used for simple enrolls that use http authentication
18 | $WORKSPACE/install/bin/estserver -p $EST_DT0_PORT3 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
19 | sleep 1
20 |
21 | echo "dt_start_estserver.sh is complete..."
22 | exit 0
23 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/DT/dt_start_estserver1.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # Name: dt_start_estserver1.sh
3 | # For use with ESTClientTest.java and ESTClientTestNonFIPS.java tests
4 | # and uses four instances of estserver
5 |
6 | # usage:
7 | echo "Starting dt_start_estserver1.sh ..."
8 |
9 | cd $WORKSPACE/example/server
10 |
11 | echo There are $# arguments to $0: $*
12 | echo first arguement will be used as the port number = $1
13 |
14 | # this is the main estserver instance that should be used for simple enrolls
15 | $WORKSPACE/install/bin/estserver -o -p $1 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
16 | sleep 1
17 | # the following estserver is set to reject the first attempted connection so we can test catching exceptions
18 | $WORKSPACE/install/bin/estserver -p $2 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 -m 3600 &
19 | sleep 1
20 | # this estserver should be started with -h to cause it to request and accept http digest authentication
21 | $WORKSPACE/install/bin/estserver -h -p $3 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
22 | sleep 1
23 | # this is the estserver instance without "-o" that should be used for simple enrolls that use http authentication
24 | $WORKSPACE/install/bin/estserver -p $4 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
25 | sleep 1
26 |
27 | echo "dt_start_estserver1.sh is complete..."
28 | exit 0
29 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/DT/dt_start_estserver2.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # Name: dt_start_estserver2.sh
3 | #
4 | # Purpose: Start estserver for use with Java EST Client testing
5 |
6 | # usage:
7 | echo "Starting dt_start_estserver2.sh ..."
8 |
9 | echo There are $# arguments to $0: $*
10 | echo first arguement will be used as the port number = $1
11 |
12 | cd $WORKSPACE/example/server
13 |
14 | # this is the main estserver instance that should be used for simple reenrolls
15 | $WORKSPACE/install/bin/estserver -o -p $1 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
16 | sleep 3
17 |
18 | echo "dt_start_estserver2.sh is complete..."
19 | exit 0
20 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/DT/dt_start_estserver3.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # Name: dt_start_estserver3.sh
3 | #
4 | # Purpose: Start estserver for use with Java EST Client get cacerts testing
5 | # For use with CACertsTestNonFIPS.java tests
6 | # and mainly just uses different ports so as
7 | # not to conflict with dt_start_estserver2.sh
8 |
9 | echo "Starting dt_start_estserver3.sh ..."
10 |
11 | cd $WORKSPACE/example/server
12 |
13 | # this is the main estserver instance that should be used for simple enrolls
14 | $WORKSPACE/install/bin/estserver -o -p $EST_CACERTS_PORT_NF --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
15 | sleep 3
16 |
17 | echo "dt_start_estserver3.sh is complete..."
18 | exit 0
19 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/DT/dt_start_estserver4.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # Name: dt_start_estserver4.sh
3 | #
4 | # Purpose: Start estserver for use with Java EST Client simple reenroll testing
5 | # For use with ESTClientReEnrollTest.java tests
6 | # and mainly just uses different ports so as
7 | # not to conflict with other testing
8 |
9 | # usage:
10 | echo "Starting dt_start_estserver4.sh ..."
11 |
12 | echo There are $# arguments to $0: $*
13 | echo first arguement will be used as the port number = $1
14 |
15 | cd $WORKSPACE/example/server
16 |
17 | # this is the main estserver instance that should be used for simple reenrolls
18 | $WORKSPACE/install/bin/estserver -o -p $1 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
19 | sleep 3
20 |
21 | echo "dt_start_estserver4.sh is complete..."
22 | exit 0
23 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/DT/dt_start_estserver5.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # Name: dt_start_estserver5.sh
3 | #
4 | # Purpose: Start estserver for use with Java EST Client simple reenroll testing
5 | # For use with ESTClientReEnrollTestNonFIPS.java tests
6 | # and mainly just uses different ports so as
7 | # not to conflict with other testing
8 |
9 | echo "Starting dt_start_estserver5.sh ..."
10 |
11 | cd $WORKSPACE/example/server
12 |
13 | # this is the main estserver instance that should be used for simple reenrolls
14 | $WORKSPACE/install/bin/estserver -o -p $EST_DT5_PORT1 --srp passwd.srpv -c estCA/private/estservercertandkey.pem -k estCA/private/estservercertandkey.pem -r estrealm -v -6 -d 60 &
15 | sleep 3
16 |
17 | echo "dt_start_estserver5.sh is complete..."
18 | exit 0
19 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/UT/FIPSTest.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est.test.UT;
2 |
3 | import static org.junit.Assert.assertNotNull;
4 | import static org.junit.Assert.fail;
5 |
6 | import org.junit.After;
7 | import org.junit.AfterClass;
8 | import org.junit.Before;
9 | import org.junit.BeforeClass;
10 | import org.junit.Test;
11 |
12 | import com.cisco.c3m.est.ESTClient;
13 |
14 |
15 | public class FIPSTest {
16 | @BeforeClass
17 | public static void setUpBeforeClass() throws Exception {
18 | System.out.println("Initializing FIPSTest for " + ESTClient.getVersion() + "...");
19 | }
20 |
21 | @AfterClass
22 | public static void tearDownAfterClass() throws Exception {
23 | System.out.println("Test completed.");
24 | }
25 |
26 | @Before
27 | public void setUp() throws Exception {
28 | }
29 |
30 | @After
31 | public void tearDown() throws Exception {
32 | }
33 |
34 | @Test
35 | public void testEnableFIPS() {
36 | ESTClient ec = new ESTClient();
37 | assertNotNull(ec);
38 | try {
39 | ec.enableFIPS();
40 | } catch (Exception e) {
41 | fail(e.getMessage());
42 | }
43 | }
44 |
45 | }
46 |
--------------------------------------------------------------------------------
/java/src/com/cisco/c3m/est/test/UT/Helpers.java:
--------------------------------------------------------------------------------
1 | package com.cisco.c3m.est.test.UT;
2 |
3 | import java.io.FileInputStream;
4 | import java.io.InputStream;
5 | import java.security.KeyStore;
6 | import java.security.cert.X509Certificate;
7 | import java.util.Enumeration;
8 |
9 | public class Helpers {
10 | /*
11 | * This function will take the name of a file on the local system that is a Java keystore (JKS).
12 | * It will load the file into a KeyStore object and pull out the trusted certificates.
13 | * It returns an array of X509Certificate objects that contain these trusted certs.
14 | */
15 | public static X509Certificate[] loadTA (String jksFile) {
16 | int c_count = 0;
17 | KeyStore store;
18 | String pass = "changeit";
19 | X509Certificate certs[] = null;
20 |
21 | try {
22 | InputStream rs = new FileInputStream(jksFile);
23 | store = KeyStore.getInstance("JKS");
24 | store.load(rs, pass.toCharArray());
25 | Enumeration e = store.aliases();
26 | //First, see how many certs we have
27 | while (e.hasMoreElements() && c_count < 10) {
28 | String alias = (String)e.nextElement();
29 | if (store.isCertificateEntry(alias)) {
30 | c_count++;
31 | }
32 | }
33 | //Allocate space for the certs
34 | certs = new X509Certificate[c_count];
35 | e = store.aliases();
36 | c_count = 0;
37 | while (e.hasMoreElements() && c_count < 10) {
38 | String alias = (String)e.nextElement();
39 | if (store.isCertificateEntry(alias)) {
40 | System.out.println("found " + alias + " is trust cert: " + store.isCertificateEntry(alias));
41 | certs[c_count] = (java.security.cert.X509Certificate)store.getCertificate(alias);
42 | c_count++;
43 | }
44 | }
45 | rs.close();
46 | } catch (Exception e) {
47 | System.out.println("Exception in JESTTest: " + e.getMessage());
48 | System.out.println(e.getStackTrace());
49 | }
50 | return certs;
51 | }
52 | }
53 |
--------------------------------------------------------------------------------
/java/src/run_dt_fips_junit.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
38 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
--------------------------------------------------------------------------------
/java/test/.classpath:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/java/test/.project:
--------------------------------------------------------------------------------
1 |
2 |
3 | CiscoJEST_Test
4 |
5 |
6 | CiscoJEST
7 | libciscojest
8 |
9 |
10 |
11 | org.eclipse.jdt.core.javabuilder
12 |
13 |
14 |
15 |
16 |
17 | org.eclipse.jdt.core.javanature
18 |
19 |
20 |
--------------------------------------------------------------------------------
/java/test/src/MyTrustManager.java:
--------------------------------------------------------------------------------
1 | import java.security.Certificate;
2 | import java.security.KeyStore;
3 | import java.security.cert.CertificateException;
4 | import java.security.cert.CertificateFactory;
5 | import java.security.cert.X509Certificate;
6 |
7 | import javax.net.ssl.TrustManager;
8 | import javax.net.ssl.TrustManagerFactory;
9 | import javax.net.ssl.X509TrustManager;
10 |
11 |
12 |
13 | public class MyTrustManager implements X509TrustManager {
14 |
15 | X509TrustManager pkixTrustManager;
16 |
17 | MyTrustManager(KeyStore ks) throws Exception {
18 |
19 | TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance("PKIX");
20 | trustManagerFactory.init(ks);
21 |
22 | TrustManager trustManagers[] = trustManagerFactory.getTrustManagers();
23 |
24 | for(TrustManager trustManager : trustManagers) {
25 | if(trustManager instanceof X509TrustManager) {
26 | pkixTrustManager = (X509TrustManager) trustManager;
27 | return;
28 | }
29 | }
30 |
31 | throw new Exception("Couldn't initialize");
32 | }
33 |
34 | public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
35 | pkixTrustManager.checkServerTrusted(chain, authType);
36 | }
37 |
38 | public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
39 | pkixTrustManager.checkServerTrusted(chain, authType);
40 | }
41 |
42 | public X509Certificate[] getAcceptedIssuers() {
43 | return pkixTrustManager.getAcceptedIssuers();
44 | }
45 | }
--------------------------------------------------------------------------------
/libcoap.cisco.273.patch.sha512:
--------------------------------------------------------------------------------
1 | SHA512(./libcoap.cisco.273.patch)= d5ce619abd3e749fe0f926d923ceb458bf70eef0a30615d66ed537bee29a42fa7931319d13465ab99154244ea32b1b0387fe6b0a170b719f03b0e409715f1628
2 |
--------------------------------------------------------------------------------
/m4/ltversion.m4:
--------------------------------------------------------------------------------
1 | # ltversion.m4 -- version numbers -*- Autoconf -*-
2 | #
3 | # Copyright (C) 2004, 2011-2015 Free Software Foundation, Inc.
4 | # Written by Scott James Remnant, 2004
5 | #
6 | # This file is free software; the Free Software Foundation gives
7 | # unlimited permission to copy and/or distribute it, with or without
8 | # modifications, as long as this notice is preserved.
9 |
10 | # @configure_input@
11 |
12 | # serial 4179 ltversion.m4
13 | # This file is part of GNU Libtool
14 |
15 | m4_define([LT_PACKAGE_VERSION], [2.4.6])
16 | m4_define([LT_PACKAGE_REVISION], [2.4.6])
17 |
18 | AC_DEFUN([LTVERSION_VERSION],
19 | [macro_version='2.4.6'
20 | macro_revision='2.4.6'
21 | _LT_DECL(, macro_version, 0, [Which release of libtool.m4 was used?])
22 | _LT_DECL(, macro_revision, 0)
23 | ])
24 |
--------------------------------------------------------------------------------
/safe_c_stub/Makefile.am:
--------------------------------------------------------------------------------
1 |
2 | SUBDIRS=lib
3 |
4 | EXTRA_DIST=include
5 |
--------------------------------------------------------------------------------
/safe_c_stub/include/mem_primitives_lib.h:
--------------------------------------------------------------------------------
1 | #ifndef __MEM_PRIMITIVES_LIB__
2 | #define __MEM_PRIMITIVES_LIB__
3 |
4 | #endif // __MEM_PRIMITIVES_LIB__
5 |
--------------------------------------------------------------------------------
/safe_c_stub/include/safe_lib.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * safe_lib.h -- Stub SafeC library includes
3 | *
4 | * June, 2016
5 | *
6 | * Contains code derived from https://sourceforge.net/projects/safeclib/
7 | * license reproduced below
8 | *
9 | * October 2008, Bo Berry
10 | *
11 | * Copyright (c) 2008-2011 by Cisco Systems, Inc
12 | * All rights reserved.
13 | *
14 | * Permission is hereby granted, free of charge, to any person
15 | * obtaining a copy of this software and associated documentation
16 | * files (the "Software"), to deal in the Software without
17 | * restriction, including without limitation the rights to use,
18 | * copy, modify, merge, publish, distribute, sublicense, and/or
19 | * sell copies of the Software, and to permit persons to whom the
20 | * Software is furnished to do so, subject to the following
21 | * conditions:
22 | *
23 | * The above copyright notice and this permission notice shall be
24 | * included in all copies or substantial portions of the Software.
25 | *
26 | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
27 | * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES
28 | * OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
29 | * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
30 | * HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
31 | * WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
32 | * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
33 | * OTHER DEALINGS IN THE SOFTWARE.
34 | *------------------------------------------------------------------
35 | */
36 | #ifndef __SAFE_LIB_H__
37 | #define __SAFE_LIB_H__
38 |
39 |
40 | #ifdef _WIN32
41 | #define __restrict__
42 | #endif
43 |
44 | #ifdef __cplusplus
45 | extern "C" {
46 | #endif
47 |
48 | #include "safe_lib_errno.h"
49 | #include "safe_mem_lib.h"
50 | #include "safe_str_lib.h"
51 |
52 |
53 | #ifdef __cplusplus
54 | }
55 | #endif
56 | #endif /* __SAFE_LIB_H__ */
57 |
58 |
--------------------------------------------------------------------------------
/safe_c_stub/lib/Makefile.am:
--------------------------------------------------------------------------------
1 |
2 | #
3 | # Unfortunately the real safec library does not follow
4 | # Linux convention having libraries start with lib.
5 | # So here I'm forcing a non-standard build of
6 | # our safec stub to match the library names
7 | # used with safec
8 | #
9 | #
10 | noinst_LIBRARIES= libsafe_lib.a
11 | #libsafe_lib_a_LDFLAGS= -module -avoid-version -no-undefined
12 |
13 | libsafe_lib_a_SOURCES = \
14 | ../src/safe_mem_stub.c \
15 | ../src/safe_str_stub.c
16 |
17 | libsafe_lib_a_CFLAGS=-I../include $(AM_CFLAGS) -fPIC
18 |
19 |
20 |
21 |
22 |
23 |
24 |
--------------------------------------------------------------------------------
/src/Makefile.am:
--------------------------------------------------------------------------------
1 | SUBDIRS = est
2 |
--------------------------------------------------------------------------------
/src/est/Makefile.am:
--------------------------------------------------------------------------------
1 | if ENABLE_CLIENT_ONLY
2 | lib_LTLIBRARIES = libest_client.la
3 | AM_CFLAGS = -I$(SSL_CFLAGS) -I../.. -I$(SAFEC_CFLAGS) $(LIBCURL_CFLAGS)
4 | libest_client_la_LDFLAGS = -release $(PACKAGE_VERSION)
5 | libest_client_la_SOURCES = est.c est_client.c est_client_http.c est_ossl_util.c est_client_proxy.c jsmn.c \
6 | multipart_parser.c
7 |
8 | libest_client_la_LIBADD = $(SAFEC_LDFLAGS)
9 | library_includedir=$(includedir)/est
10 | library_include_HEADERS = est.h
11 | EXTRA_DIST = est_locl.h est_ossl_util.h est_client_proxy.h est_sock_compat.h jsmn.h multipart_parser.h
12 |
13 | else
14 |
15 | lib_LTLIBRARIES = libest.la
16 | AM_CFLAGS = -I$(SSL_CFLAGS) -I../.. -I$(SAFEC_CFLAGS) $(LIBCURL_CFLAGS)
17 | libest_la_LDFLAGS = -release $(PACKAGE_VERSION)
18 | libest_la_SOURCES = est.c est_client.c est_server.c est_server_http.c \
19 | est_proxy.c est_client_http.c est_ossl_util.c \
20 | est_client_proxy.c jsmn.c multipart_parser.c \
21 | est_enhcd_cert_auth.c est_server_coap.c
22 |
23 | libest_la_LIBADD = $(SAFEC_LDFLAGS)
24 | library_includedir=$(includedir)/est
25 | library_include_HEADERS = est.h
26 | EXTRA_DIST = est_locl.h est_ossl_util.h est_server.h est_server_http.h est_client_proxy.h est_sock_compat.h \
27 | jsmn.h multipart_parser.h
28 |
29 | endif
--------------------------------------------------------------------------------
/src/est/est_client_proxy.h:
--------------------------------------------------------------------------------
1 | /** @file */
2 | /*------------------------------------------------------------------
3 | * est/est_client_proxy.h - Private definitions for Client proxy
4 | * support
5 | *
6 | *
7 | * March, 2016
8 | *
9 | * Copyright (c) 2016, 2017 by cisco Systems, Inc.
10 | * All rights reserved.
11 | *
12 | * crdaviso@cisco.com
13 | * 2016-03-02
14 | **------------------------------------------------------------------
15 | */
16 |
17 | #ifndef TCP_CLI_WRAP_H
18 | #define TCP_CLI_WRAP_H
19 |
20 | #ifdef HAVE_LIBCURL
21 | #include
22 | #endif
23 | #include
24 | #include "est.h"
25 | #include "est_sock_compat.h"
26 |
27 | typedef enum tcw_err {
28 | TCW_OK = 0,
29 | TCW_ERR_ARG, /**< check errno for details */
30 | TCW_ERR_ALLOC, /**< check errno for details */
31 | TCW_ERR_RESOLV, /**< check GET_SOCK_ERR() for details */
32 | TCW_ERR_SOCKET, /**< check GET_SOCK_ERR() for details */
33 | TCW_ERR_CONNECT, /**< check GET_SOCK_ERR() for details */
34 | TCW_ERR_FCNTL, /**< check GET_SOCK_ERR() for details */
35 | TCW_ERR_CLOSE, /**< check GET_SOCK_ERR() for details */
36 | TCW_ERR_OTHER, /**< check errno for details */
37 | } tcw_err_t;
38 |
39 | typedef struct tcw_opts {
40 | EST_CLIENT_PROXY_PROTO proxy_proto;
41 | char *proxy_host;
42 | unsigned short int proxy_port;
43 | unsigned int proxy_auth;
44 | char *proxy_username;
45 | char *proxy_password;
46 | } tcw_opts_t;
47 |
48 | typedef struct tcw_sock {
49 | #ifdef HAVE_LIBCURL
50 | CURL *curl_handle;
51 | #endif
52 | EST_CLIENT_PROXY_PROTO proxy_proto;
53 | SOCK_TYPE sock_fd;
54 | } tcw_sock_t;
55 |
56 | tcw_err_t tcw_connect(tcw_sock_t *sock, tcw_opts_t *opts, const char *host,
57 | unsigned short int port, SOCK_TYPE *fd);
58 | tcw_err_t tcw_close(tcw_sock_t *sock);
59 |
60 | #endif
61 |
62 |
--------------------------------------------------------------------------------
/src/est/est_ossl_util.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * est_ossl_util.h - Entry point definitions into the OpenSSL
3 | * interface for EST server operations.
4 | *
5 | * November, 2012
6 | *
7 | * Copyright (c) 2012-2014 by cisco Systems, Inc.
8 | * All rights reserved.
9 | *------------------------------------------------------------------
10 | */
11 | #ifndef HEADER_EST_OSSL_UTIL_H
12 | #define HEADER_EST_OSSL_UTIL_H
13 |
14 | /* Windows only option: Export local API functions for testing */
15 | #ifdef WIN32
16 | #ifdef DEVTEST
17 | #ifdef DT_EXPORTS
18 | #define LIBEST_TEST_API __declspec(dllexport)
19 | #else
20 | #define LIBEST_TEST_API __declspec(dllimport)
21 | #endif /* DT_EXPORTS */
22 | #else
23 | #define LIBEST_TEST_API
24 | #endif /* DEVTEST */
25 | #else
26 | #define LIBEST_TEST_API
27 | #endif /* WIN32 */
28 |
29 | #include "est.h"
30 |
31 | /*
32 | * Indicate whether a pointer is to a cert or a csr
33 | */
34 | typedef enum {
35 | EST_CERT = 1,
36 | EST_CSR
37 | } EST_CERT_OR_CSR;
38 |
39 | EST_ERROR est_get_subj_fld_from_cert (void *cert_csr,
40 | EST_CERT_OR_CSR cert_or_csr,
41 | char *name, int len);
42 | int ossl_verify_cb(int ok, X509_STORE_CTX *ctx);
43 | LIBEST_TEST_API void ossl_dump_ssl_errors(void);
44 | EST_ERROR ossl_init_cert_store(X509_STORE *store,
45 | unsigned char *raw1, int size1);
46 |
47 | #endif
48 |
--------------------------------------------------------------------------------
/src/est/est_sock_compat.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * est_sock_compat.h - Socket Compatibility
3 | *
4 | * For socket compatibility between Windows and every other
5 | * target
6 | *
7 | * April, 2016
8 | *
9 | * Copyright (c) 2016 by cisco Systems, Inc.
10 | * All rights reserved.
11 | **------------------------------------------------------------------
12 | */
13 | #ifndef HEADER_EST_SOCK_COMPAT_H
14 | #define HEADER_EST_SOCK_COMPAT_H
15 |
16 | #ifdef WIN32
17 | #include
18 | /*
19 | * Winsock defines a different function for closing sockets because not all
20 | * versions of Windows have file descriptor and socket descriptor
21 | * equivalency like Unix. To make sure we call the right function, use the
22 | * CLOSE_SOCKET macro for closing the socket
23 | */
24 | # define CLOSE_SOCKET(s) closesocket(s)
25 | # define SOCK_TYPE SOCKET
26 | # define SOCK_INVALID INVALID_SOCKET
27 | # define GET_SOCK_ERR() WSAGetLastError()
28 | # define SET_SOCK_ERR(e) WSASetLastError(e)
29 | # define SET_SOCK_ERR_NONAME() WSASetLastError(WSAHOST_NOT_FOUND)
30 | # define SET_SOCK_ERR_CONN() WSASetLastError(WSAECONNREFUSED)
31 | # define SET_SOCK_ERR_NOMEM() WSASetLastError(WSA_NOT_ENOUGH_MEMORY)
32 | #else
33 | # define CLOSE_SOCKET(s) close(s)
34 | # define SOCK_TYPE int
35 | # define SOCK_INVALID -1
36 | # define GET_SOCK_ERR() errno
37 | # define SET_SOCK_ERR(e) { errno = (e); }
38 | # define SET_SOCK_ERR_NONAME() { errno = ENOENT; }
39 | # define SET_SOCK_ERR_CONN() { errno = ECONNREFUSED; }
40 | # define SET_SOCK_ERR_NOMEM() { errno = ENOMEM; }
41 | #endif /* WIN32 */
42 |
43 | #endif /* HEADER_EST_SOCK_COMPAT_H */
44 |
--------------------------------------------------------------------------------
/src/est/jsmn.h:
--------------------------------------------------------------------------------
1 | #ifndef __JSMN_H_
2 | #define __JSMN_H_
3 |
4 | #include
5 |
6 | #ifdef __cplusplus
7 | extern "C" {
8 | #endif
9 |
10 | /**
11 | * JSON type identifier. Basic types are:
12 | * o Object
13 | * o Array
14 | * o String
15 | * o Other primitive: number, boolean (true/false) or null
16 | */
17 | typedef enum {
18 | JSMN_UNDEFINED = 0,
19 | JSMN_OBJECT = 1,
20 | JSMN_ARRAY = 2,
21 | JSMN_STRING = 3,
22 | JSMN_PRIMITIVE = 4
23 | } jsmntype_t;
24 |
25 | enum jsmnerr {
26 | /* Not enough tokens were provided */
27 | JSMN_ERROR_NOMEM = -1,
28 | /* Invalid character inside JSON string */
29 | JSMN_ERROR_INVAL = -2,
30 | /* The string is not a full JSON packet, more bytes expected */
31 | JSMN_ERROR_PART = -3
32 | };
33 |
34 | /**
35 | * JSON token description.
36 | * type type (object, array, string etc.)
37 | * start start position in JSON data string
38 | * end end position in JSON data string
39 | */
40 | typedef struct {
41 | jsmntype_t type;
42 | int start;
43 | int end;
44 | int size;
45 | #ifdef JSMN_PARENT_LINKS
46 | int parent;
47 | #endif
48 | } jsmntok_t;
49 |
50 | /**
51 | * JSON parser. Contains an array of token blocks available. Also stores
52 | * the string being parsed now and current position in that string
53 | */
54 | typedef struct {
55 | unsigned int pos; /* offset in the JSON string */
56 | unsigned int toknext; /* next token to allocate */
57 | int toksuper; /* superior token node, e.g parent object or array */
58 | } jsmn_parser;
59 |
60 | /**
61 | * Create JSON parser over an array of tokens
62 | */
63 | void jsmn_init(jsmn_parser *parser);
64 |
65 | /**
66 | * Run JSON parser. It parses a JSON data string into and array of tokens, each describing
67 | * a single JSON object.
68 | */
69 | int jsmn_parse(jsmn_parser *parser, const char *js, size_t len,
70 | jsmntok_t *tokens, unsigned int num_tokens);
71 |
72 | #ifdef __cplusplus
73 | }
74 | #endif
75 |
76 | #endif /* __JSMN_H_ */
77 |
--------------------------------------------------------------------------------
/test/UT/CA/brski_trustedcerts.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBUDCB+aADAgECAgkAw4C8jUexZpUwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxl
3 | c3RFeGFtcGxlQ0EwHhcNMTQwNzAyMjAxOTE5WhcNMjYwNjE0MjAxOTE5WjAXMRUw
4 | EwYDVQQDEwxlc3RFeGFtcGxlQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAART
5 | F/ACJ7HQ4iKfIzN4vFS0STyxIawbmydFhnl0BiAx6vtxIY5JZhCJmF8eC4beVeAd
6 | DyCS5Nh9JOAn0xdjsxE5oy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRm5VbK
7 | kysCC1ek1OLtX8qk7n2D+TAJBgcqhkjOPQQBA0cAMEQCIF4fXl0NezZ9kB9Ctcly
8 | 8tkpJDPYtOX9mRG5zEcrJotQAiByrK6+8RdmQyw7ZqgUVT/APneVxcTQ6S0F08RZ
9 | scwjvw==
10 | -----END CERTIFICATE-----
11 | -----BEGIN CERTIFICATE-----
12 | MIIBSTCB8KADAgECAgkA2lkx15I2acIwCgYIKoZIzj0EAwIwEjEQMA4GA1UEAwwH
13 | TUFTQV9DQTAeFw0yMDA2MTYwMTQ1NDVaFw0zMDA2MTQwMTQ1NDVaMBIxEDAOBgNV
14 | BAMMB01BU0FfQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAT0RAEJx8lv3ACS
15 | R0w2j/d7ORPgH4mQmNqJgo5KILek6kMmI9TSNUPMJrd07LkM4LREDXi2rssvtaxE
16 | uHzI1DOJoy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBQgprN/hUqNgrwrZ1Ag
17 | Vp1g4MzsXDAKBggqhkjOPQQDAgNIADBFAiAN73e+U4kXHRQeoLz3JQId1TCX1W4k
18 | KWpBehxDBLBVWQIhAIdm2LtSKVL52pFV2xNsB/zTsVmr6aKrPPVwZJjWPCC1
19 | -----END CERTIFICATE-----
20 |
--------------------------------------------------------------------------------
/test/UT/CA/coap_emu_certs/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQg7WcXZ+WoXWpf9IBu
3 | BRi164euYcVMWWPSS/tMMt2h5KWhRANCAAQzbcsdjwOy2VgDJhzvkE2A5hRlOWVq
4 | VE0wcPZ7K8X0dEgUbFMj2I/Pb0wqZHZn6rM+Q1arhpOG0fFWV+9Soo0J
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/coap_emu_certs/coap_client.key:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgG6aGwTNhWP/PLJ0h
3 | 0a67sf98SDWxt9iCpEtk/622Em2hRANCAATuwWj1TGyow1/cIy29xrQSzDGDrhEp
4 | u5NTP9tdgS4S0qjXo97q/J9V5Lql7XEW6EU6ZCfr1+iFkR+AhWELrVS2
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/coap_emu_certs/midsize.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIIBNTCB2wIBADB5MQswCQYDVQQGEwJVUzELMAkGA1UECAwCTkMxDDAKBgNVBAcM
3 | A1JUUDEWMBQGA1UECgwNQ2lzY28gU3lzdGVtczEZMBcGA1UECwwQQ2lzY29QS0kg
4 | RGV2VGVzdDEcMBoGA1UEAwwTbG9jYWxob3N0LmNpc2NvLmNvbTBZMBMGByqGSM49
5 | AgEGCCqGSM49AwEHA0IABO7BaPVMbKjDX9wjLb3GtBLMMYOuESm7k1M/212BLhLS
6 | qNej3ur8n1XkuqXtcRboRTpkJ+vX6IWRH4CFYQutVLagADAKBggqhkjOPQQDAgNJ
7 | ADBGAiEApLKgepwPah4Gl2TacvdqMTSJjskSlA+iEfXsoVZFr4kCIQD8K+H4qYOW
8 | 3XzSkYYInN+quehVW1K3R6n/hbZWazyJjA==
9 | -----END CERTIFICATE REQUEST-----
10 |
--------------------------------------------------------------------------------
/test/UT/CA/createRA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 |
3 | # default variables and config options
4 | EST_SCRIPTNAME=$0
5 | EST_SERVER_DIR=estCA
6 | EST_OPENSSL_CACNF=./estExampleRA.cnf
7 | EST_SERVER_SUBJ="/CN=127.0.0.1"
8 | EST_SERVER_CERTREQ=${EST_SERVER_DIR}/proxy-csr.pem
9 | EST_SERVER_CERT=${EST_SERVER_DIR}/proxy-cert.pem
10 | EST_SERVER_KEY=${EST_SERVER_DIR}/private/proxy-key.pem
11 | EST_SERVER_CERTKEY=${EST_SERVER_DIR}/private/proxy-certandkey.pem
12 | EST_ECPARMS=${EST_SERVER_DIR}/prime256v1.pem
13 | OPENSSLCMD=openssl
14 |
15 | function iferrorlogandexit ()
16 | {
17 | if [ $? -ne 0 ] ; then
18 | echo "###########..EXIT..##########"
19 | echo "SCRIPT $EST_SCRIPTNAME EXIT: $1 ($2)"
20 | echo "###########^^EXIT^^##########"
21 | echo ""
22 | exit $2
23 | fi
24 | }
25 |
26 | # Create a certificate for our est server
27 | echo "#################################################################"
28 | echo "####(Re)creating a certificate for our RA to use"
29 | echo "#################################################################"
30 | # re-using the same NEWKEY_PARAM as is used for our CA
31 | eval $OPENSSLCMD req -new -nodes -out $EST_SERVER_CERTREQ -newkey ec:$EST_ECPARMS -keyout $EST_SERVER_KEY -subj $EST_SERVER_SUBJ -config $EST_OPENSSL_CACNF
32 | iferrorlogandexit "Unable to create est server CSR" 1
33 | $OPENSSLCMD ca -out $EST_SERVER_CERT -batch -config $EST_OPENSSL_CACNF -infiles $EST_SERVER_CERTREQ
34 | iferrorlogandexit "Unable to create RA certificate" 1
35 | $OPENSSLCMD x509 -in $EST_SERVER_CERT -text
36 | cat $EST_SERVER_KEY $EST_SERVER_CERT > $EST_SERVER_CERTKEY
37 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBUDCB+aADAgECAgkAw4C8jUexZpUwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxl
3 | c3RFeGFtcGxlQ0EwHhcNMTQwNzAyMjAxOTE5WhcNMjYwNjE0MjAxOTE5WjAXMRUw
4 | EwYDVQQDEwxlc3RFeGFtcGxlQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAART
5 | F/ACJ7HQ4iKfIzN4vFS0STyxIawbmydFhnl0BiAx6vtxIY5JZhCJmF8eC4beVeAd
6 | DyCS5Nh9JOAn0xdjsxE5oy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRm5VbK
7 | kysCC1ek1OLtX8qk7n2D+TAJBgcqhkjOPQQBA0cAMEQCIF4fXl0NezZ9kB9Ctcly
8 | 8tkpJDPYtOX9mRG5zEcrJotQAiByrK6+8RdmQyw7ZqgUVT/APneVxcTQ6S0F08RZ
9 | scwjvw==
10 | -----END CERTIFICATE-----
11 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/cacertandcrl.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBUjCB+aADAgECAgkAxubsmRyvNhEwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxl
3 | c3RFeGFtcGxlQ0EwHhcNMTMwNzAyMTcxMDA2WhcNMTQwNzAyMTcxMDA2WjAXMRUw
4 | EwYDVQQDEwxlc3RFeGFtcGxlQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAART
5 | F/ACJ7HQ4iKfIzN4vFS0STyxIawbmydFhnl0BiAx6vtxIY5JZhCJmF8eC4beVeAd
6 | DyCS5Nh9JOAn0xdjsxE5oy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRm5VbK
7 | kysCC1ek1OLtX8qk7n2D+TAJBgcqhkjOPQQBA0kAMEYCIQCi7cXmFnJelU2/j8EC
8 | I49V/8trx2iCeWVDhNnfNE1CmAIhAIz8c4f1amN142O7v/ijeNZQHGVlrdWjnYke
9 | Be3Knc/0
10 | -----END CERTIFICATE-----
11 | -----BEGIN X509 CRL-----
12 | MIGwMFgwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxlc3RFeGFtcGxlQ0EXDTEzMDcw
13 | MjE3MzQ0NVoXDTEzMDgwMTE3MzQ0NVowFDASAgEGFw0xMzA3MDIxNzM0MTVaMAkG
14 | ByqGSM49BAEDSQAwRgIhAKwnSw8jlJwi/o7bSPTmTzFxyKiDdpYeKoEKe0+HHvhU
15 | AiEAyA72Tk9LCAWmiBBQ2nZ4kjpimMqg4Rbl4fcSVQPzNU8=
16 | -----END X509 CRL-----
17 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/crl.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN X509 CRL-----
2 | MIHGMG4wCgYIKoZIzj0EAwIwFzEVMBMGA1UEAxMMZXN0RXhhbXBsZUNBFw0yMDA3
3 | MDEyMjQwNTFaFw0yMDA3MzEyMjQwNTFaMCkwEgIBBhcNMTMwNzAyMTczNDE1WjAT
4 | AgIExhcNMTcwMjA2MTUyNDA3WjAKBggqhkjOPQQDAgNIADBFAiEApWepFp6mPB7v
5 | asxFE4zkBFg8gWvudyRcuxdnJT5V24ECIBRzsnRpRzk4ngH4anrWUIJQI9e6wi9P
6 | VVFf/O4OXCc7
7 | -----END X509 CRL-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/estpwdfile:
--------------------------------------------------------------------------------
1 | estuser:estrealm:36807fa200741bb0e8fb04fcf08e2de6
--------------------------------------------------------------------------------
/test/UT/CA/estCA/estserver.req:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHNMHYCAQAwFDESMBAGA1UEAxMJMTI3LjAuMC4xMFkwEwYHKoZIzj0CAQYIKoZI
3 | zj0DAQcDQgAEw5K6z/uLve6/j2tFNK7PGQdIOem0XOENUeXAvrRnVCLO4zXUZEdf
4 | xlJKJMqrToLanzPUV2C7ZcROg7MVGbuQhKAAMAkGByqGSM49BAEDSAAwRQIhAMv8
5 | QneqN0L8AiQVCiRod+gATnw6rTvppDKPivQ9i1agAiBPUZCLWTeShuQmfBeQFn3v
6 | ebUo5C9lk9KLmLVclojrRg==
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/index.txt.attr.old:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/multicacerts.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBVDCB+6ADAgECAgkA09KBgTwntKgwCQYHKoZIzj0EATAYMRYwFAYDVQQDEw1l
3 | c3RFWFRFUk5BTENBMB4XDTE0MDcwMjIwMjA1M1oXDTI2MDYxNDIwMjA1M1owGDEW
4 | MBQGA1UEAxMNZXN0RVhURVJOQUxDQTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IA
5 | BOmZMEmno73PacY6cOzOkgiPiDNEp3EmSgvzp5NKqSxodKlbOOeBEE1KitpYtI+x
6 | iHGe+nLeCg15u4BMsnBgFRejLzAtMAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFM+x
7 | kusOs4rcDulVUE5VraZFXFixMAkGByqGSM49BAEDSQAwRgIhAJ9gKgovDsvl+0Pp
8 | uJ9xKF5Sh4SSIuaXAuMHDg6NsbwpAiEAwlvGcf5HS/9XK32lKL7P7yKRaKG9xTG1
9 | b4dXjtpSINI=
10 | -----END CERTIFICATE-----
11 | -----BEGIN CERTIFICATE-----
12 | MIIBUDCB+aADAgECAgkAw4C8jUexZpUwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxl
13 | c3RFeGFtcGxlQ0EwHhcNMTQwNzAyMjAxOTE5WhcNMjYwNjE0MjAxOTE5WjAXMRUw
14 | EwYDVQQDEwxlc3RFeGFtcGxlQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAART
15 | F/ACJ7HQ4iKfIzN4vFS0STyxIawbmydFhnl0BiAx6vtxIY5JZhCJmF8eC4beVeAd
16 | DyCS5Nh9JOAn0xdjsxE5oy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRm5VbK
17 | kysCC1ek1OLtX8qk7n2D+TAJBgcqhkjOPQQBA0cAMEQCIF4fXl0NezZ9kB9Ctcly
18 | 8tkpJDPYtOX9mRG5zEcrJotQAiByrK6+8RdmQyw7ZqgUVT/APneVxcTQ6S0F08RZ
19 | scwjvw==
20 | -----END CERTIFICATE-----
21 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQg63gnJGV594fO17uo
3 | Zu2zG0jtJAOi2SopzC8CvgXQyoahRANCAARTF/ACJ7HQ4iKfIzN4vFS0STyxIawb
4 | mydFhnl0BiAx6vtxIY5JZhCJmF8eC4beVeAdDyCS5Nh9JOAn0xdjsxE5
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/private/estserver.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgsqvJO8UaYDIJxoCZ
3 | ym3Vnyn7lP+KK22i5qD2Cljj4K+hRANCAATDkrrP+4u97r+Pa0U0rs8ZB0g56bRc
4 | 4Q1R5cC+tGdUIs7jNdRkR1/GUkokyqtOgtqfM9RXYLtlxE6DsxUZu5CE
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/private/proxy-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgSpklh0pjsoV2vHfe
3 | rpTQvAdS/Vqi+uAv7tmosVhgSFGhRANCAARk1GC4FTLx03ikV3ZLp305wpfEt3ba
4 | 3/o2eKFinKZWhV7PZwpByDAcA8To7b3K5MPMndjPgG7BSbiFQXpMVfzj
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/proxy-csr.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHOMHYCAQAwFDESMBAGA1UEAwwJMTI3LjAuMC4xMFkwEwYHKoZIzj0CAQYIKoZI
3 | zj0DAQcDQgAEZNRguBUy8dN4pFd2S6d9OcKXxLd22t/6NnihYpymVoVez2cKQcgw
4 | HAPE6O29yuTDzJ3Yz4BuwUm4hUF6TFX846AAMAoGCCqGSM49BAMCA0gAMEUCIQCo
5 | BZ0Chn7nWr+KCbpNFJhDdw9JcVK5W+pVue8bCptuEwIgG+umr85nmkAAyzoEMpK1
6 | 6hSt3U51bLfUXHi85vdZwrA=
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/serial:
--------------------------------------------------------------------------------
1 | 1164
2 |
--------------------------------------------------------------------------------
/test/UT/CA/estCA/serial.old:
--------------------------------------------------------------------------------
1 | 1163
2 |
--------------------------------------------------------------------------------
/test/UT/CA/ext.cnf:
--------------------------------------------------------------------------------
1 | # Extensions to add to a certificate request
2 |
3 | basicConstraints = CA:FALSE
4 | keyUsage = nonRepudiation, digitalSignature, keyEncipherment
5 | subjectAltName = @alt_names
6 | crlDistributionPoints=URI:http://example.com/crl.pem
7 |
8 | [alt_names]
9 | DNS.1 = localhost
10 | DNS.2 = ip6-localhost
11 | IP.1 = 127.0.0.1
12 | IP.2 = ::1
13 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBVDCB+6ADAgECAgkA09KBgTwntKgwCQYHKoZIzj0EATAYMRYwFAYDVQQDEw1l
3 | c3RFWFRFUk5BTENBMB4XDTE0MDcwMjIwMjA1M1oXDTI2MDYxNDIwMjA1M1owGDEW
4 | MBQGA1UEAxMNZXN0RVhURVJOQUxDQTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IA
5 | BOmZMEmno73PacY6cOzOkgiPiDNEp3EmSgvzp5NKqSxodKlbOOeBEE1KitpYtI+x
6 | iHGe+nLeCg15u4BMsnBgFRejLzAtMAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFM+x
7 | kusOs4rcDulVUE5VraZFXFixMAkGByqGSM49BAEDSQAwRgIhAJ9gKgovDsvl+0Pp
8 | uJ9xKF5Sh4SSIuaXAuMHDg6NsbwpAiEAwlvGcf5HS/9XK32lKL7P7yKRaKG9xTG1
9 | b4dXjtpSINI=
10 | -----END CERTIFICATE-----
11 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/index.txt:
--------------------------------------------------------------------------------
1 | V 140702173223Z 01 unknown /CN=implicit-cert-test
2 | V 140702173250Z 02 unknown /CN=revoked-cert-test
3 | V 260615123432Z 03 unknown /CN=implicit-cert-test
4 | V 260615125028Z 04 unknown /CN=implicit-cert-test
5 | V 260615134942Z 05 unknown /CN=implicit-cert-test
6 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/index.txt.attr.old:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/index.txt.old:
--------------------------------------------------------------------------------
1 | V 140702173223Z 01 unknown /CN=implicit-cert-test
2 | V 140702173250Z 02 unknown /CN=revoked-cert-test
3 | V 260615123432Z 03 unknown /CN=implicit-cert-test
4 | V 260615125028Z 04 unknown /CN=implicit-cert-test
5 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgu7WPswmOiCPhBBBZ
3 | 71KXqKGhLvzkCJITq0M73d1GKUqhRANCAATpmTBJp6O9z2nGOnDszpIIj4gzRKdx
4 | JkoL86eTSqksaHSpWzjngRBNSoraWLSPsYhxnvpy3goNebuATLJwYBUX
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/serial:
--------------------------------------------------------------------------------
1 | 06
2 |
--------------------------------------------------------------------------------
/test/UT/CA/extCA/serial.old:
--------------------------------------------------------------------------------
1 | 05
2 |
--------------------------------------------------------------------------------
/test/UT/CA/masa.cnf:
--------------------------------------------------------------------------------
1 | # Extensions to add to a certificate request
2 |
3 | basicConstraints = CA:FALSE
4 | keyUsage = nonRepudiation, digitalSignature, keyEncipherment
5 | subjectAltName = @alt_names
6 | crlDistributionPoints=URI:http://example.com/crl.pem
7 |
8 | [alt_names]
9 | DNS.1 = localhost
10 | DNS.2 = ip6-localhost
11 | IP.1 = 127.0.0.1
12 | IP.2 = ::1
13 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA.altid/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBSTCB8KADAgECAgkA/CPomemaQ9cwCgYIKoZIzj0EAwIwEjEQMA4GA1UEAwwH
3 | TUFTQV9DQTAeFw0yMDA2MTYwMTQ1NDVaFw0zMDA2MTQwMTQ1NDVaMBIxEDAOBgNV
4 | BAMMB01BU0FfQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAARY1LrcGi6jLyyE
5 | lbElLOJWfWYP3cWv2z0dse7aqEgSysxtwcnpvnVHSIOd1VAAx4am+fNCOSh3u3q/
6 | Inepa5YZoy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRh23AuQTNne/MVqpeJ
7 | yBqLlRxYBjAKBggqhkjOPQQDAgNIADBFAiEA3rWEnUhvfmMTZZXAq3FE09qVtsu/
8 | 24KcB9q+buaysnYCIBwehmgeXzMe3YEZ9KeC6Q9xTPKbjEOJp+0G15w5Jhu9
9 | -----END CERTIFICATE-----
10 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA.altid/index.txt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/test/UT/CA/masaCA.altid/index.txt
--------------------------------------------------------------------------------
/test/UT/CA/masaCA.altid/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA.altid/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgBjLceJUbDIrzuPBm
3 | El2AOgBJIfRxmgV/p6B6DE7pfSmhRANCAARY1LrcGi6jLyyElbElLOJWfWYP3cWv
4 | 2z0dse7aqEgSysxtwcnpvnVHSIOd1VAAx4am+fNCOSh3u3q/Inepa5YZ
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA.altid/serial:
--------------------------------------------------------------------------------
1 | 01
2 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBSTCB8KADAgECAgkA2lkx15I2acIwCgYIKoZIzj0EAwIwEjEQMA4GA1UEAwwH
3 | TUFTQV9DQTAeFw0yMDA2MTYwMTQ1NDVaFw0zMDA2MTQwMTQ1NDVaMBIxEDAOBgNV
4 | BAMMB01BU0FfQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAT0RAEJx8lv3ACS
5 | R0w2j/d7ORPgH4mQmNqJgo5KILek6kMmI9TSNUPMJrd07LkM4LREDXi2rssvtaxE
6 | uHzI1DOJoy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBQgprN/hUqNgrwrZ1Ag
7 | Vp1g4MzsXDAKBggqhkjOPQQDAgNIADBFAiAN73e+U4kXHRQeoLz3JQId1TCX1W4k
8 | KWpBehxDBLBVWQIhAIdm2LtSKVL52pFV2xNsB/zTsVmr6aKrPPVwZJjWPCC1
9 | -----END CERTIFICATE-----
10 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/index.txt:
--------------------------------------------------------------------------------
1 | V 210616014545Z 01 unknown /CN=www.iotrus.com/serialNumber=IOTRUS-0123456789
2 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/index.txt.old:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/test/UT/CA/masaCA/index.txt.old
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/pledge_csr.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIICuzCCAaMCAQAwdjEXMBUGA1UEAwwOd3d3LmlvdHJ1cy5jb20xFzAVBgNVBAoM
3 | DklPVC1SLVVTLCBJbmMuMQswCQYDVQQGEwJVUzELMAkGA1UECAwCTkMxDDAKBgNV
4 | BAcMA1JUUDEaMBgGA1UEBRMRSU9UUlVTLTAxMjM0NTY3ODkwggEiMA0GCSqGSIb3
5 | DQEBAQUAA4IBDwAwggEKAoIBAQCoPT73zvqgH4+JlmWnYroymlbnBl68FQezn25G
6 | MKBqeOEcn29v7ElDDsXrd5tcRaxmBFyrkycnBRMYMH+M0X38egtCIkpTRjPjcmaR
7 | vC+QbqqJ4pOTSSpcNsq+euyYlpxkSIDGZA/dAt7lMrs1VN5n4zNWixKsV0IgKNcx
8 | FwY7BKCQv00Y2dyt8yHuqPg8PCK9gekPYtTXJbT0UExdB7Z8GUQpqxV0BIqzatO/
9 | 1IPR64qDOPYMXBltsc6/u1knHK3AGlFfcE/uxC8regpf4VkraYth40oDUs+vAYPx
10 | njyEMelmIJzBfLUPFKK7IkbxaDV+EETB5yrcrM7wgKI+RcVTAgMBAAGgADANBgkq
11 | hkiG9w0BAQsFAAOCAQEASlpa+LDCJlNttzuCEBuCBgIFR2ErEnxzKkQ734GqNFj0
12 | fjZRw0Z/f4EfdEF8xIOKy9+RAPy/liPQ9CcltxAeUiKnRnWai4C8uBGpRlf/ZdDc
13 | zaz2tYgypTNnHvXnp6+mg/gSp/E6IQdRPGZHpS+xWJqs1A/fkHDfKtGOifxJNSBs
14 | japAqy7zwLoiOOCRglhLP6d8h2I9J7bOy+GIMXoG+ujaKSxGtLzuja1uVcSrDACX
15 | AgkGAb5Nvp7zi09jOfqiR8+8yqpiFV0cWfc1WGSPvwErCz4iZgDw0ZDjzR1MkPzk
16 | KrUv3xZlc/oB8UGqK1q8e6Seo9fVs87JritFUe/f6w==
17 | -----END CERTIFICATE REQUEST-----
18 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/pledge_priv_key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQCoPT73zvqgH4+J
3 | lmWnYroymlbnBl68FQezn25GMKBqeOEcn29v7ElDDsXrd5tcRaxmBFyrkycnBRMY
4 | MH+M0X38egtCIkpTRjPjcmaRvC+QbqqJ4pOTSSpcNsq+euyYlpxkSIDGZA/dAt7l
5 | Mrs1VN5n4zNWixKsV0IgKNcxFwY7BKCQv00Y2dyt8yHuqPg8PCK9gekPYtTXJbT0
6 | UExdB7Z8GUQpqxV0BIqzatO/1IPR64qDOPYMXBltsc6/u1knHK3AGlFfcE/uxC8r
7 | egpf4VkraYth40oDUs+vAYPxnjyEMelmIJzBfLUPFKK7IkbxaDV+EETB5yrcrM7w
8 | gKI+RcVTAgMBAAECggEAZ1spAgiwRArfncE9tjWa+leDJ+7r6FRrJNi/YHOjOYYF
9 | lhYE2hepcn7y7JPQaEGNhicL34RJu1kMwAGbeqGA6sj3faufScWJPyQbC1E3T14N
10 | eyQtUYDTe09WAut1ytBMR/ea1UbH0BlhYiFmjX8UG3KjKXnLAQGiaCtu+IOSmlJg
11 | TYWYy9hQrTw4YIOh6i7SiIx7tb4MnMLQ+/tuG0IGt6LuNt3oyl275NO+U4daPJu3
12 | osIZl8YQcaG00cCIkNh/15TafX1bzcW2Vt3QshK3EC3Rpng5WugiDU5CpDraF5N+
13 | VU1/bc41n7YtzbJnaAP/DtN7XKufYR3Hw6pNh66a8QKBgQDV98JZ5sXX/cwMQVaY
14 | Dzq/+vCCHUqc8ldkXAj+2FeVEZu/s7oZdtmlZtQpYayAGa3M/9f4T3FQOyyeDryP
15 | +ftaUWJ96bNczBFtO8uuC0YyYZqFJhhZ02bork1ORkCy3m+Z2FuTMNEnPyPiZ2XJ
16 | 1VbFN2i5S8fla+WQAQUg/MAqvwKBgQDJSdcG2LK4L+/oy4yg0OTExYzIyV1Rk4y/
17 | xZxnBg3g1Hk7m6VFcFomOiOPK+BiAGilGBb3CXyRoJUYjvtwd++PogNJV3KmiR8n
18 | b/QaE8EuEb3R2gPIc/jKftbGJAmUd3kM5oVIq3qv8cSj3i6GbaZLI1LzuYbzQq+C
19 | yFpLQsrubQKBgACAtoozip95TzNwK93rmz28PzhvDS/VOfNYbAT9SSdmhTEsIPHS
20 | X6yN003NlvQuG0RyDXXd6exAV1h/vF2yPq71pf+Zvvwm1pulGlNsX1va8twBPOlp
21 | H8LINhJLA/fnoeeApKZx5OvssA7mI00YHT4VZT+aN/wIBuARwItVTLZNAoGBAKkd
22 | ptGTwyRI8lIuomqC15ITQCN6OzNMupZs2ukcBxD8sxbHwGXE7Zjsg+/IN29fVIxQ
23 | 3wqTJ9vahSnrB4oI2ndc8VHvbN5KmqgxwW8fZdDlCwyDFWaXOVI4mw5CPOJGNqgG
24 | DbluiVfF0yayh3heK7c5aHppR96eCoPg/Sv6ZDFJAoGBAMrzDeimLroBtz/6cc5w
25 | 3SHcAsB1Z/z4fF59l4DyVyUwROrN0KZreae76oKPEd6aQwFTXewtO8OyFeElr6dI
26 | SzL8892sWck0i4fqoV6hWYMpzEbs+9DFJ6iVN48B9DshJZ/1hg4CFzQAXvfZgYnR
27 | d/aV5PQ/P/qP971DXnqH8E6G
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgFuKPBmdX/L+z6qhV
3 | XJpl4oNBDPcZwTZImPns+9CzxsqhRANCAAT0RAEJx8lv3ACSR0w2j/d7ORPgH4mQ
4 | mNqJgo5KILek6kMmI9TSNUPMJrd07LkM4LREDXi2rssvtaxEuHzI1DOJ
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/serial:
--------------------------------------------------------------------------------
1 | 02
2 |
--------------------------------------------------------------------------------
/test/UT/CA/masaCA/serial.old:
--------------------------------------------------------------------------------
1 | 01
2 |
--------------------------------------------------------------------------------
/test/UT/CA/masa_alt_id/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBSTCB8KADAgECAgkA8NBRy72ruJUwCgYIKoZIzj0EAwIwEjEQMA4GA1UEAwwH
3 | TUFTQV9DQTAeFw0xODAyMjMxODI5MjdaFw0yODAyMjExODI5MjdaMBIxEDAOBgNV
4 | BAMMB01BU0FfQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAASk6EDN+XuqAKZ7
5 | I5vLjLVy7K7sZ02DYrHkBgrbxs2c5PasO9d64vbmLY8hHBD4+ILepxuDz6HKWvrw
6 | QLHLaUH6oy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRTLo1Ads8rLgvk3f0r
7 | hem39ZDaGjAKBggqhkjOPQQDAgNIADBFAiEAw748oZodALdjAwgI6cqo7cq2Mg8Q
8 | 9As35U1llUdnof8CIByk59woFPBYBM6vXymzz/Xt0mxm0+wdb5G1bP7GexP4
9 | -----END CERTIFICATE-----
10 |
--------------------------------------------------------------------------------
/test/UT/CA/masa_alt_id/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgYE9Ra51tsVKpD3m1
3 | M4Y1Q1ZC9exUF65EkFiCgyw5EHyhRANCAASk6EDN+XuqAKZ7I5vLjLVy7K7sZ02D
4 | YrHkBgrbxs2c5PasO9d64vbmLY8hHBD4+ILepxuDz6HKWvrwQLHLaUH6
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBbzCCARWgAwIBAgIUJAXNCgD+Pdsp9anrDXIiRzNy4f4wCgYIKoZIzj0EAwIw
3 | HzEdMBsGA1UEAwwUZXN0RXhhbXBsZVRlc3RNZmcwQ0EwHhcNMjAwMTIxMTcwNDI4
4 | WhcNNDAwMTIxMTcwNDI4WjAfMR0wGwYDVQQDDBRlc3RFeGFtcGxlVGVzdE1mZzBD
5 | QTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNn0FiXlCp97K8j7Z0gGidS1RtST
6 | A3FQTbhyBQGIUoIkLK19Sk1qxIM3Rl8RjPmZigrQgerwhIB2FVUhSnlKj7GjLzAt
7 | MAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFIDSjbn4NSw9VWuAsngKWEwtM02/MAoG
8 | CCqGSM49BAMCA0gAMEUCIQCYxD8DHsrR5j7Aq+3QDeNPSJH0vMRGTDhSfSE9rzkL
9 | ugIgHTZ8K2uO81x0TU6IPitJjz7vrEGXnDEZ6gZaOAdropI=
10 | -----END CERTIFICATE-----
11 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/est.req:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHkMIGMAgEAMCoxEjAQBgNVBAMMCTEyNy4wLjAuMTEUMBIGA1UEBRMLU046eCwg
3 | UElEOngwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATTNPWqZgYYVYnFdLlV2/lh
4 | zsMSaneuMsnBPQivoR8/0G3QZutKR8+xu6Rh2lOxjUE6gxdCe3a1FcP8nQF0dhZs
5 | oAAwCgYIKoZIzj0EAwIDRwAwRAIgLOyf4n0bmt3fZbS2YMaOL6K8oCOiduMhT0ah
6 | bR6SDbkCIHg1xkRJv2KLGfqke4AhagnAT45Y6zIGj0oa4tHQe4TQ
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/index.txt:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg0CA1-0
2 | V 390422190637Z 02 unknown /CN=127.0.0.1/serialNumber=SN:x, PID:x
3 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/index.txt.attr.old:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/index.txt.old:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg0CA1-0
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgBV7DZCZGvwuEa8XU
3 | dPqXlTvcCHtoxW4w4WCBvM2tr5KhRANCAATZ9BYl5QqfeyvI+2dIBonUtUbUkwNx
4 | UE24cgUBiFKCJCytfUpNasSDN0ZfEYz5mYoK0IHq8ISAdhVVIUp5So+x
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/private/cakey1-0.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgSWzU7RKFbnVnFhTR
3 | qrCxNmIJhKAwCMs6nRCWAPVARhihRANCAATgoYL1z3IIn/iQCOymXUV08TYQ8ifU
4 | 4FOQhSWO89KM99JHfUfdVWzhkySZ2HGDH7h2wObx6YZwST3R1fexzTSe
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/private/esttestmfg0.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgdRW3sI13Nwp9EYY3
3 | JsgWZXbQwpxmf9NgwjCCl6mQYR6hRANCAATTNPWqZgYYVYnFdLlV2/lhzsMSaneu
4 | MsnBPQivoR8/0G3QZutKR8+xu6Rh2lOxjUE6gxdCe3a1FcP8nQF0dhZs
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/serial:
--------------------------------------------------------------------------------
1 | 03
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/serial.old:
--------------------------------------------------------------------------------
1 | 02
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA0/test.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHlMIGMAgEAMCoxEjAQBgNVBAMMCTEyNy4wLjAuMTEUMBIGA1UEBRMLU046eCwg
3 | UElEOngwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATTNPWqZgYYVYnFdLlV2/lh
4 | zsMSaneuMsnBPQivoR8/0G3QZutKR8+xu6Rh2lOxjUE6gxdCe3a1FcP8nQF0dhZs
5 | oAAwCgYIKoZIzj0EAwIDSAAwRQIgUMohAIYlO7ban78fYdt78651epsTx33XFDXm
6 | H3WJ2i8CIQCzeytxbwB0kHxRY+dgrsJPaU1QabIYErgmWPeLzNkclA==
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBbzCCARWgAwIBAgIUQkBAXHUEfOeUIWN/VjjWULnbucEwCgYIKoZIzj0EAwIw
3 | HzEdMBsGA1UEAwwUZXN0RXhhbXBsZVRlc3RNZmcxQ0EwHhcNMjAwMTIxMTcwNDI5
4 | WhcNNDAwMTIxMTcwNDI5WjAfMR0wGwYDVQQDDBRlc3RFeGFtcGxlVGVzdE1mZzFD
5 | QTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABDpQVejc74RdV9YMoxnfLr/xLxsj
6 | 4hpgNmkYEQKTeFrHyZv/D5npmcSKErQa43Kvg8h7KLCokqLkOxjnlfP+j7+jLzAt
7 | MAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFPIO5NWJzxa4nEmof7n7Q7hcjshyMAoG
8 | CCqGSM49BAMCA0gAMEUCIQCFEMQa0buOoEfHNnaaQifDifMSDqERMQaumIAH2ZdZ
9 | sgIgMhEMYkyH0mF2E65e763IG+k3nkL7NcCx2cztqufobFA=
10 | -----END CERTIFICATE-----
11 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/est.req:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHPMHYCAQAwFDESMBAGA1UEAwwJMTI3LjAuMC4xMFkwEwYHKoZIzj0CAQYIKoZI
3 | zj0DAQcDQgAEk0CuCsH5fuCOgh4HF8QrP5fmx5rHckHe0O/FMl4bLgAwm7z/AA4Y
4 | 9n/zGojFYDoJMQCEKlZUZ68bmMUbPf4ovqAAMAoGCCqGSM49BAMCA0kAMEYCIQCe
5 | Sjj0O7fqKzuCmc4s3KbaH/JNj/MwxmmUcAPQAborMwIhAM/G1T/uJd/7y7PlY607
6 | qhFoCEqp2+Oo2xKbiLTdvxjX
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/index.txt:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg1CA1-0
2 | V 390422190637Z 02 unknown /CN=127.0.0.1
3 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/index.txt.attr.old:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/index.txt.old:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg1CA1-0
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgwLVatqVv/wE4WiSq
3 | 9WyWysDC0ezi+1PTlDkbznT5UuWhRANCAAQ6UFXo3O+EXVfWDKMZ3y6/8S8bI+Ia
4 | YDZpGBECk3hax8mb/w+Z6ZnEihK0GuNyr4PIeyiwqJKi5DsY55Xz/o+/
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/private/cakey1-0.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQglohLJJYaBmrr5ih3
3 | 2hUvvOHfIDTjlwuGuqfXQhmB23+hRANCAAT2RZvNxYORXgBHZY9YZQQi355dWdx/
4 | wEWw3NjQGaSp0+qyzrnho6JatxNsW2jDV8VY8rWLlUpLvRqVZrDC70sW
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/private/esttestmfg1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgEpsculEC7vzrZJHp
3 | BC6091qRhv884lgqjyPnpt5EFDmhRANCAASTQK4Kwfl+4I6CHgcXxCs/l+bHmsdy
4 | Qd7Q78UyXhsuADCbvP8ADhj2f/MaiMVgOgkxAIQqVlRnrxuYxRs9/ii+
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/serial:
--------------------------------------------------------------------------------
1 | 03
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/serial.old:
--------------------------------------------------------------------------------
1 | 02
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA1/test.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHOMHYCAQAwFDESMBAGA1UEAwwJMTI3LjAuMC4xMFkwEwYHKoZIzj0CAQYIKoZI
3 | zj0DAQcDQgAEk0CuCsH5fuCOgh4HF8QrP5fmx5rHckHe0O/FMl4bLgAwm7z/AA4Y
4 | 9n/zGojFYDoJMQCEKlZUZ68bmMUbPf4ovqAAMAoGCCqGSM49BAMCA0gAMEUCIQDO
5 | gVnoC4/Zy/mtdrL3+FGB9K8DBLjDK+/djN1tDtUZtAIgE0im3aPqLxSzPUCZwk2g
6 | gUgESuqjTiaKTxnOLKEZk1k=
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBcDCCARWgAwIBAgIUejVnx9zYI4hln5v6VvsgQkXUMbowCgYIKoZIzj0EAwIw
3 | HzEdMBsGA1UEAwwUZXN0RXhhbXBsZVRlc3RNZmcyQ0EwHhcNMjAwMTIxMTcwNDI5
4 | WhcNNDAwMTIxMTcwNDI5WjAfMR0wGwYDVQQDDBRlc3RFeGFtcGxlVGVzdE1mZzJD
5 | QTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABMeRKXaYmruGwpF9M+RTxZySgBDx
6 | Th6PU6Gzjms9tM/vQJGJcEBtskALgQZxSZEtISH6Uk9uDyU03fkB6TwvLTCjLzAt
7 | MAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFLmp4wZxaiNOUUjsJN0Pym+1l+XQMAoG
8 | CCqGSM49BAMCA0kAMEYCIQD2YF5ADjMd0iwIy+ab54+geSofdyzbmQk9NhnjaSp8
9 | agIhAJZhcZ7zTFf96fDBd3GUV6c+DJogdQ18OhEAFmZT/15t
10 | -----END CERTIFICATE-----
11 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/est.req:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHpMIGQAgEAMC4xEjAQBgNVBAMMCTEyNy4wLjAuMTEYMBYGA1UECgwPVG95c1JV
3 | c0tub2NrT2ZmMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE+zNpq5lECYLJt/24
4 | HVnKBjuXseRugW79huINrnE4iJuBFdVYRTRDdizD02isnDWh9gjQeoAp9bq4p6rq
5 | dL9OKaAAMAoGCCqGSM49BAMCA0gAMEUCIQDpkgVCRUDNssbkzT+Dkxh61TZqXL1E
6 | cZx4xYz1nkg4OQIgacwx06MkwJEJba19+Xe3dc8gLcdgIcDoNnsgQqUtr5Y=
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/index.txt:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg2CA1-0
2 | V 390422190637Z 02 unknown /CN=127.0.0.1/O=ToysRUsKnockOff
3 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/index.txt.attr.old:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/index.txt.old:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg2CA1-0
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgKF/D2As7ZN9elJCZ
3 | Eqzi0WOu/qi4WPvxYOgVrvRYBguhRANCAATHkSl2mJq7hsKRfTPkU8WckoAQ8U4e
4 | j1Ohs45rPbTP70CRiXBAbbJAC4EGcUmRLSEh+lJPbg8lNN35Aek8Ly0w
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/private/cakey1-0.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQghJao3LF2N1ZlUa5w
3 | gYnT3IMAX3qkBim+qvckQqCwhe+hRANCAATpD3BWODjaoxF+wHya/qzwgfSG/ts5
4 | zKdqNPzlbsjn+qUZodGU4nEgCDMlXVC86t8IlsPxasfeIlciRiJWIxMY
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/private/esttestmfg2.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgfsMmoAGZGQsDzQXH
3 | V+aUhnYaGiTgaFJOs2TMkZHNremhRANCAAT7M2mrmUQJgsm3/bgdWcoGO5ex5G6B
4 | bv2G4g2ucTiIm4EV1VhFNEN2LMPTaKycNaH2CNB6gCn1urinqup0v04p
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/serial:
--------------------------------------------------------------------------------
1 | 03
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/serial.old:
--------------------------------------------------------------------------------
1 | 02
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA2/test.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHoMIGQAgEAMC4xEjAQBgNVBAMMCTEyNy4wLjAuMTEYMBYGA1UECgwPVG95c1JV
3 | c0tub2NrT2ZmMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE+zNpq5lECYLJt/24
4 | HVnKBjuXseRugW79huINrnE4iJuBFdVYRTRDdizD02isnDWh9gjQeoAp9bq4p6rq
5 | dL9OKaAAMAoGCCqGSM49BAMCA0cAMEQCIEnmZO5TWaXrEeimq7m8JOea7Rhl2RKN
6 | kF14LdmQT8mlAiB8T0IXgMlf1BW/A74z2EG9Ff0ieeZ94h/daL8njg2uSw==
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBbzCCARWgAwIBAgIUHgBG8aeSA1BovER9bXqZg8K+JpswCgYIKoZIzj0EAwIw
3 | HzEdMBsGA1UEAwwUZXN0RXhhbXBsZVRlc3RNZmczQ0EwHhcNMjAwMTIxMTcwNDI5
4 | WhcNNDAwMTIxMTcwNDI5WjAfMR0wGwYDVQQDDBRlc3RFeGFtcGxlVGVzdE1mZzND
5 | QTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABMXEbDTGlm+wJII8OONyepsEkR1Q
6 | gBZvuMGmZHRsHgi+81BrOASyukzEbj+/0936GNMU3eK+Wj7E/lbaxUftfbyjLzAt
7 | MAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFGpf8VeAC/fMr5zjUPKadMtuv49NMAoG
8 | CCqGSM49BAMCA0gAMEUCIQCotP7q/MFC3VrdwNfxt5qX1/YmUHIt0Hz+d8zaYTkg
9 | 8wIgZFN7GDOerpBNSjbdg9t1+WHVeBFYLwhnQ91yz+POCdo=
10 | -----END CERTIFICATE-----
11 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/est.req:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIH4MIGfAgEAMD0xEjAQBgNVBAMMCTEyNy4wLjAuMTEnMCUGA1UECwweSU9PVChJ
3 | bnRlcm5ldCBPZiBPdGhlciBUaGluZ3MpMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcD
4 | QgAEIZ0dtpscI1u+jK3ONWPXyA8eRP9RcskdhsaDxTrK5MDOFQyQsSfFm2rEt+DJ
5 | m2/EurldqHbBW9QMMrxC1lubhKAAMAoGCCqGSM49BAMCA0gAMEUCIQC3csGvN7dT
6 | MtW2HHSDxatbaQtqmmLZT72cdYcOrl7aGAIgJNDuYsq1JtMrGpzKIDPJjxq7h+pi
7 | bxCc8NCEz1cgOjM=
8 | -----END CERTIFICATE REQUEST-----
9 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/index.txt:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg3CA1-0
2 | V 390422190637Z 02 unknown /CN=127.0.0.1/OU=IOOT(Internet Of Other Things)
3 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/index.txt.attr.old:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/index.txt.old:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg3CA1-0
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgJN4HXLVvk4DZtSO1
3 | MyRLAERZG6U40aG9lJ15yVwv+tGhRANCAATFxGw0xpZvsCSCPDjjcnqbBJEdUIAW
4 | b7jBpmR0bB4IvvNQazgEsrpMxG4/v9Pd+hjTFN3ivlo+xP5W2sVH7X28
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/private/cakey1-0.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgjn4VVl/oa+X0xCGN
3 | C/0KxKBrTBUNSLt4/yURWBL14mehRANCAAQasqj2nz9J599HCEGpaUEy0urLnUXa
4 | GsiLabK9qBQzcz4beJ0gtEL5aiwrIC02RanQGUFTFKjsjaWsUKmuOpFf
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/private/esttestmfg3.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQghr4Dl+M8R0D6350r
3 | 0j1BpIISV6yRe1D8mwZvtjGW4tWhRANCAAQhnR22mxwjW76Mrc41Y9fIDx5E/1Fy
4 | yR2GxoPFOsrkwM4VDJCxJ8WbasS34Mmbb8S6uV2odsFb1AwyvELWW5uE
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/serial:
--------------------------------------------------------------------------------
1 | 03
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/serial.old:
--------------------------------------------------------------------------------
1 | 02
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA3/test.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIH3MIGfAgEAMD0xEjAQBgNVBAMMCTEyNy4wLjAuMTEnMCUGA1UECwweSU9PVChJ
3 | bnRlcm5ldCBPZiBPdGhlciBUaGluZ3MpMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcD
4 | QgAEIZ0dtpscI1u+jK3ONWPXyA8eRP9RcskdhsaDxTrK5MDOFQyQsSfFm2rEt+DJ
5 | m2/EurldqHbBW9QMMrxC1lubhKAAMAoGCCqGSM49BAMCA0cAMEQCIC/5NjBaWRVy
6 | oZRwO2029HmumKserwogRV9uuHR6GPLsAiBUC4rzk7rD3hRYjGW0L8Zu4eMAB0Ac
7 | uEhU+t6XlpedNw==
8 | -----END CERTIFICATE REQUEST-----
9 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBcDCCARWgAwIBAgIUTeEwrrLQeFVyjOVxN8meCwlu6VwwCgYIKoZIzj0EAwIw
3 | HzEdMBsGA1UEAwwUZXN0RXhhbXBsZVRlc3RNZmc0Q0EwHhcNMjAwMTIxMTcwNDI5
4 | WhcNNDAwMTIxMTcwNDI5WjAfMR0wGwYDVQQDDBRlc3RFeGFtcGxlVGVzdE1mZzRD
5 | QTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABLQAV+din8gHHMHnPf7ulTQwt6cQ
6 | RBy+O7rezS81JWlyk3Jhbt/087CvX4bCQa0rXq/DcBe2Tr9gSP1lOAVhGpWjLzAt
7 | MAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFJxqHWHAk8olSAuooqxxW7GEjy9KMAoG
8 | CCqGSM49BAMCA0kAMEYCIQDHMcaK+j53AdGTOqF0Pmjiwd4UmimNLJfVlot77hYY
9 | SAIhAID8IwsUgEzfROOuokLViDSK5rMU87IQm029oU5VDm5k
10 | -----END CERTIFICATE-----
11 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/est.req:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHrMIGSAgEAMDAxEjAQBgNVBAMMCTEyNy4wLjAuMTEaMBgGA1UEMgwRVGhlU2Vj
3 | cmV0Q2VydENsdWIwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAQeIi4HVSgTURRa
4 | Vr9F1Qn4EH0jD9x9c6LD1KuQpW1i33MZOwoPTEUa+cWcbDqPOmfVzDC2skwRpdqZ
5 | oLjvkgIboAAwCgYIKoZIzj0EAwIDSAAwRQIgc0symxE9nA257rzInR0M2LrNtKi4
6 | FF6rBkgGxb1/SWsCIQC30r4/PyAHuS1nU2Il4Zpnr7bZxLOw8qbCgR5mvMtjMQ==
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/index.txt:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg4CA1-0
2 | V 390422190637Z 02 unknown /CN=127.0.0.1/uniqueMember=TheSecretCertClub
3 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/index.txt.attr.old:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/index.txt.old:
--------------------------------------------------------------------------------
1 | V 390422190637Z 01 unknown /CN=estExampleTestMfg4CA1-0
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgtuk7QRd+rWkLxjB0
3 | IA5ZiAhbftO6gfFMNenD0tft2B2hRANCAAS0AFfnYp/IBxzB5z3+7pU0MLenEEQc
4 | vju63s0vNSVpcpNyYW7f9POwr1+GwkGtK16vw3AXtk6/YEj9ZTgFYRqV
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/private/cakey1-0.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgAEWBsxGNSJKjSEwv
3 | DHSb2uF3fqnQ7Y2TLURkxZLBvx2hRANCAASklmrQSSDoCd3s18l2LmEwFOilgVs+
4 | 6EzZBcMjKWtC7se4JEXrX+H6PARLxhzGDAON5qqC5mLhIh0n5wmR4Q9M
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/private/esttestmfg4.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgLmWULYYpniKvFiPC
3 | hpsK2EkujrOU4UJR46jtvccOd66hRANCAAQeIi4HVSgTURRaVr9F1Qn4EH0jD9x9
4 | c6LD1KuQpW1i33MZOwoPTEUa+cWcbDqPOmfVzDC2skwRpdqZoLjvkgIb
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/serial:
--------------------------------------------------------------------------------
1 | 03
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/serial.old:
--------------------------------------------------------------------------------
1 | 02
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/TestMfgCA4/test.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIHrMIGSAgEAMDAxEjAQBgNVBAMMCTEyNy4wLjAuMTEaMBgGA1UEMgwRVGhlU2Vj
3 | cmV0Q2VydENsdWIwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAQeIi4HVSgTURRa
4 | Vr9F1Qn4EH0jD9x9c6LD1KuQpW1i33MZOwoPTEUa+cWcbDqPOmfVzDC2skwRpdqZ
5 | oLjvkgIboAAwCgYIKoZIzj0EAwIDSAAwRQIgC+HOfZPgfXHMu3AATNkcdPDQmwll
6 | PcKcIeC8Vl+o5GECIQCbP+/IC8k11B9LcLpmu02CguN+tfTjkRbpble/8e/tsA==
7 | -----END CERTIFICATE REQUEST-----
8 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/certgen/__init__.py:
--------------------------------------------------------------------------------
1 | print('Invoking __init__.py for %s' % __name__)
2 | from ESTCommon import *
3 | from MfgCommon import *
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/ext.cnf:
--------------------------------------------------------------------------------
1 | # Extensions to add to a certificate request
2 |
3 | basicConstraints = CA:FALSE
4 | keyUsage = nonRepudiation, digitalSignature, keyEncipherment
5 | subjectAltName = @alt_names
6 | crlDistributionPoints=URI:http://example.com/crl.pem
7 |
8 | [alt_names]
9 | DNS.1 = localhost
10 | DNS.2 = ip6-localhost
11 | IP.1 = 127.0.0.1
12 | IP.2 = ::1
13 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/cacert.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBZzCCAQ2gAwIBAgIUH+VFHk3W53/0OQtRUd2slB82tHkwCgYIKoZIzj0EAwIw
3 | GzEZMBcGA1UEAwwQZXN0RXhhbXBsZVNVRElDQTAeFw0yMDAxMjIxMzQwMjdaFw00
4 | MDAxMjIxMzQwMjdaMBsxGTAXBgNVBAMMEGVzdEV4YW1wbGVTVURJQ0EwWTATBgcq
5 | hkjOPQIBBggqhkjOPQMBBwNCAARLYgF0TOy8BX+48TAR0NGF9PzDrFkzzA37cOxp
6 | SPVzXQnPwRrcIoZIY0pSQqPDtUD2E55eXMo1w4qQCM0ttVhJoy8wLTAMBgNVHRME
7 | BTADAQH/MB0GA1UdDgQWBBTzXx9R6fiIGf5zBnZszjQJ7sBi+zAKBggqhkjOPQQD
8 | AgNIADBFAiA4Jxtxa8eDB4CsSHsTBaCPiD8JTVCl4+hncDQCWHjBfwIhANjc4pzy
9 | hH1Fwxy1IOMhQD01cSNgOMKzCuH0g2DXRg/9
10 | -----END CERTIFICATE-----
11 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/est.req:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIIEWTCCAkECAQAwFDESMBAGA1UEAwwJMTI3LjAuMC4xMIICIjANBgkqhkiG9w0B
3 | AQEFAAOCAg8AMIICCgKCAgEA4kqTPZQjKATDgC/PQY9iceY1RKBhFg5qDxkJbNnb
4 | kVU1TiiF9OninOlgCcBaug3jzV3HdTVQaEpVSJcz007znDyaTQ4DDXHLtdrIdgI6
5 | Kk38TVxPH5eLY4xoJTQj6AugyxRe3dWNR/OcnoGQqSCL0rL4w9jnXbD8flgvCHuD
6 | dfskc1k01wsBPugugPuI+21rnGBLJ3uLly8/rwdJJlL4S9i4JvdsuXwn+NVQiswg
7 | PSmDdlaXtv8lna23yA7R59xQILTJxWWlLtoTXbQ0JOKSqftqyGazKHiXZH/1Mz6A
8 | vNG6bE2tMcQ0cznTn1vVzUOFHBg2K0Eqz3b9MDSMNmxbk3Xbx8JcMnbVZwQWtQEd
9 | 3AAu7Y0eU2zShYQ3KAxLbxRXyoHNSVCzfFCZwSqZkdwNV2vvzRS4pOHQFawDVkR3
10 | G4JuM0VqRRfuohH4Ta1aPnxCWe8asr+hU7+mPRkikhhIhC3mU8lkAiA+6z+tw8Us
11 | NnyEI5wHnt1xBfE8hcG78HjzULfeoNGbR1YR2ZrKpJQddIwVxm8ciFM1DThVJO3p
12 | hS4EH9rcKd1B6IoLk6v6H3DZVMsr8Yat+VRx4Nqf+4pNzqmOGl+lmGocuydPkFsh
13 | LVPX3lyHWci6ncPcLt4at1s+9LmhciCKLm3GPuCNY5HFG2Hw2ftQX+Ka1yx6NbL/
14 | qR8CAwEAAaAAMA0GCSqGSIb3DQEBCwUAA4ICAQAnvdkOlrjyUQmkZWt+86Va6GiU
15 | K/boiQLod2hztLkv2VSDlRmJd+MfFMIbAiMA0Uoo1yOG04yN6/bZvWqrfJiIJTUO
16 | y/s5/g4g1Fl/Vb68MprqIZ8kl2eHWIH47EqhXmdnQCBqoQ51YP7bRBYM8zKAsX+d
17 | fMIuww80qpv4vDnxAvIC/TWQjBfs0+8Kt1uTfzl2GMd1BwbxIKAbjaxAedLzoMH+
18 | HVe4dWM17extrmk8raoIG+zTD/IOArcmvHs2A0ZW8JJam7jlFMDIu2ObZ5YhVgNF
19 | bEaw9+IsBu57l24nZFYka5Pbso0c87vmwxuXYdOihCAwo3ln60eUWVSXC8m4o4aT
20 | CLg+41BIGuVSGr0RalgUGQihisNh0Wc9w68bt4FK+OSoQZuzJQjrEgF5C6e771q3
21 | Lava+oXJeJCd8ExcqnktT7Lv2yw2D6gbtZI7Rmzeq9D359oPLozHX8EEb+YEmXva
22 | +9pHg9ugKUcP6Fdxw7HQFAwU7hAr7VWwGuZ0tqGI+p9XkneJZZn5YOWPpdjiLWY+
23 | Z6swqJPws8iKAANhg8L6P2F1WJ0WVJFdgWXw1zjgAN62U1Vvif+6PgR7/pcrxzLV
24 | 7+KWTbuHCZHU4wTVgkQhN8Wf8vddL5BmuJEgLoVPK6j7934jpeAyL4NtqK6VVhNd
25 | OgJobGgdaIZkYaaQEg==
26 | -----END CERTIFICATE REQUEST-----
27 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/index.txt:
--------------------------------------------------------------------------------
1 | V 310404180406Z 01 unknown /CN=estExampleSUDICA1-0
2 | V 310404180406Z 02 unknown /CN=estExampleSUDICA1-1
3 | V 310404180406Z 03 unknown /CN=127.0.0.1
4 | V 310404180407Z 04 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-0
5 | V 310404180408Z 05 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-1
6 | V 310404180408Z 06 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-2
7 | V 310404180409Z 07 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-3
8 | V 310404180411Z 08 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-4
9 | V 310404180411Z 09 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-5
10 | V 310404180412Z 0A unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-6
11 | V 310404180412Z 0B unknown /CN=127.0.0.1
12 | V 310404180413Z 0C unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-7
13 | V 310404180414Z 0D unknown /CN=127.0.0.1
14 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/index.txt.attr:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/index.txt.attr.old:
--------------------------------------------------------------------------------
1 | unique_subject = no
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/index.txt.old:
--------------------------------------------------------------------------------
1 | V 310404180406Z 01 unknown /CN=estExampleSUDICA1-0
2 | V 310404180406Z 02 unknown /CN=estExampleSUDICA1-1
3 | V 310404180406Z 03 unknown /CN=127.0.0.1
4 | V 310404180407Z 04 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-0
5 | V 310404180408Z 05 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-1
6 | V 310404180408Z 06 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-2
7 | V 310404180409Z 07 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-3
8 | V 310404180411Z 08 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-4
9 | V 310404180411Z 09 unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-5
10 | V 310404180412Z 0A unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-6
11 | V 310404180412Z 0B unknown /CN=127.0.0.1
12 | V 310404180413Z 0C unknown /CN=estExampleHugeSUDICA.verylongwow.cisco123.404neverexisted.zw2-7
13 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/prime256v1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/private/cakey.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgYyhP7JdozUC0Xcmt
3 | w3wekCyW1oobgcs+63nuOlHL1hehRANCAARLYgF0TOy8BX+48TAR0NGF9PzDrFkz
4 | zA37cOxpSPVzXQnPwRrcIoZIY0pSQqPDtUD2E55eXMo1w4qQCM0ttVhJ
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/private/cakey1-0.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQg1+RzZHj33ZdHeoCB
3 | pnuqjBkNnxb4FYh7Cmf/ifYerKChRANCAARLFzWpYXbi28iPcIB/NO6olQ2lce3n
4 | X5HXHaa2iRa6UXSrMlCWVeK2GBOaYgcQgZUk0TFxot330TEzvcqn46eF
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/private/cakey1-1.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgKYRugjB4SF5+r0yl
3 | nXB+xECNNryx+VKHCnKL36qDGt6hRANCAARyb7tFF64zh+NY0te7m4YNh8f2TlRZ
4 | 4NrC0yLlpSvTUtxKrLG9yzX/dCz20UR4z/nwIb3+Pz4ULvmZuO+OrItJ
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/private/estsudi.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQghmXhiAjjsZjoKvyb
3 | JitcwzwThm3kpFnoWp4ADXNFgduhRANCAATgve3oFJTFvMH4zHikc+DfQnzABLg0
4 | TmsbZZ19Us+6Y2FxLZH+ikfmGpc5OHkdAUuAe1xDj429nr2Cp6WG6Ttz
5 | -----END PRIVATE KEY-----
6 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/serial:
--------------------------------------------------------------------------------
1 | 0E
2 |
--------------------------------------------------------------------------------
/test/UT/CA/mfgCAs/sudiCA/serial.old:
--------------------------------------------------------------------------------
1 | 0D
2 |
--------------------------------------------------------------------------------
/test/UT/US1005/implicit-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEIM0ngP8IEokavZkHp5sIGccWZdZHFQoEhNoaNcAQkMMUoAoGCCqGSM49
6 | AwEHoUQDQgAE/OlyeUkh/Xr2eetxEabbvyB4orIk69XBcXSzgXmaKOY8+M/TUYUS
7 | n8HXLhRe1opMGwO6CZG8x5kHr2fEfwz3XQ==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US1060/README:
--------------------------------------------------------------------------------
1 | This test suite uses the OpenSSL SRP verifier database feature. The
2 | database is the passwd.srpv file. This file is managed using the
3 | following OpenSSL command:
4 |
5 | openssl srp -srpvfile passwd.srpv -gn 1536 -add srp_user
6 |
--------------------------------------------------------------------------------
/test/UT/US1060/explicit-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEIIiR4iQuNTXac9Dh/PPA6ga044RXGtCp/zFikYP1M5TJoAoGCCqGSM49
6 | AwEHoUQDQgAEdyEUg4Hz6GZBGLNhGT2iOQobs6pMBG9AIy1cAW9C0FPYqo99yH9b
7 | ZkjHu4DI0ZlRMvNmPkKJK9KfgHKVXxePWQ==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US1060/key-rsa-fqdnfail.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQC2W7zvV2H+B7Ec
3 | FTRjEnIBj2sTOhPQNFNomTvyT8EOrP+daaV87jcXTrBO5BysJoQw8/e40ZvWd07U
4 | RGaG6XtWvwDjE9QA6pZCltPTH26uFzSe6Dtbc2qi/xxKrbN1GvuY+JYgit4qgEH4
5 | xukvSOsz9XltcMdyfBEusZKWoc02z66pFvBS83wcESyjB5SZkVUAfKAZ9RgO+PBR
6 | uC3O1BfugFE/o+YGbl6Y2kbvpCteVdmV4Aw/Cf7VVp0PCxTYUzsHXwELbw2+/6vT
7 | UCTOWs/rd4BjMryB+pnBqY1RRzmsGkExAtTE5fV/z+oTW8ODH085xi6ziep9qKWt
8 | cnlcZkmJAgMBAAECggEBAImt6Y+qoclxdT6Go+7I1lpnNahmiN8BIpguWRwxKskx
9 | xCvMv6z7DY0DVAm8IAm5asSq7bUUTFw358RLgD0LuptbygenyMCIXLoZtgQID0BR
10 | NOFk5Ku/EBvQEEQxsPQRUzPDO1WGgwYDn8t8IkIZA7tO8ka2h17gXPisCMjBkHZ4
11 | Py9LrVFfgw7O6DNqHHuOaYcaFyJG6gDZWfvQf1YvSkmqUOcXkzbp9wzb2W+R5pM/
12 | pDoT9KC15R8bPMmOKupvL6WEcdXd7YWbAZjYCVlMSJUcTvVca/LwMraCo84mdhip
13 | uYa/exG4hgiD2ZE2zPzj8VainLG9szSpeHrXmRL6IAECgYEA6zG321RPrG/lpBQi
14 | rfSc8dqrjsx3WOpOvJnYidycd0Z3kLE0dowzCwOZMKxTfhzH06PGPq79vGpHSaeY
15 | ebGsYgBaevjXcijsop+VdHpA8AI4qW0S9lWYFEkhlh/J/tsnTPMuKWuo45UoE+Xk
16 | ak+0OWKxKdV5teqAwKFMGDvzSIECgYEAxn17fk6p/zKOAaeXoCCIFWNN3nPeyP7R
17 | DZInb8J1tfev36IieolaljpN7UTJtks/1uA4G4SnB5OUSw9P5dD2bkxohsOpbfSm
18 | GbJqwKEkFp9BYoV7sg+Y1nqIE+oJmq5Y+GDM639hyNtqB6eGV1G2GA/ZcN+/d+em
19 | pagGp2+SPQkCgYAIWsPFLsGFxpPJuE1jEIVisfnWIL08k1YorO5cN1H3irFEmoba
20 | jzBg+8e9SuHMYQlYI0EviNfKkZvmqeVorT8KXCjapWxByeJeBH0yngUggXOx0QYT
21 | agb08YQX6RkrzG0g9qJ1JjXhn7LEwi3S+PHV+AODEOo55BKexRwG4FpMAQKBgGDL
22 | GmjKxZ2cMqHd71P36US8y2Fakd7kXF/I0RBv/OUC5zIgJ74nsxQlVJELBW6vHW+U
23 | oefRdX59WkiMLAM/Np0tB6AIVFw5fLJ1ThenvSiG+uSngV2gu4CD+k3zyEE1Gk/t
24 | LKD+2lmPnhIjgKCeSTVMrVWc1wsK3TpVSQFnqCG5AoGAII2QQ0QW44n5gYn4FQ3K
25 | AptRfYjVWHTr+lCbrTru1CRlqPHLHdUOz1+hL/JG/5xqU6JeWenjq7dgCJ951v0o
26 | uCvWP1krmqoecoDBKKNc/PzNGsCpa3ci5OHeAb0KS6RtwEIJeoAJUmmF/KWOfbbZ
27 | dVl3j5mGVNVmDyJwZeKq75M=
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US1060/key-rsa.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQDH7uDlfoNl4oTL
3 | yILafUKq1v4vxN+HCr4GvCz8qL33uyewGrMyXUvGjnqSwy3/Hd6vjLewn6NX8Vz5
4 | jQMT9Qxe7Bj/bz+PKwDsWNmX+mshJDp4VYr3CsjRM710sCFT18wsdZ7OSQ7F5RuQ
5 | RbHtyb8JCYriT4rZnyzdHyNQH6bFVekmqqWEHHGwfCcS5ohgZa+AuBwM/wXY663p
6 | dpVvt8aQ0o8pG37uzTn9MFVYtcIjCYtKbEsJLnOQfXKWyUGw5j12lrfz2/oIESbG
7 | 6JJmsI7+xvPmNqFIW9NuaH53QP0irQkQ2ZoCRquKjC2xCk7LKWb5C7Z8r4yAsbyW
8 | 2F4sLKzpAgMBAAECggEAfPAgBgmrHu4Qwi/I5bRFBvFW4o8KiB8EZL0O98yS+c4w
9 | nPHybVSz156Npkzl33jRAa7T00HPF1OzIBcohz4ovuCXNnhUpajf6NIVF83bSFiV
10 | WUFLl9lbaLAGgnbWPMirxFS0KoCpBK2JLfz/lXLvODyIV6gRQrEfngapUJaW5tUP
11 | h9pwQ9z6cYGLDJFcQpaxuD//XkE9rpFNFFYjW2t9i0E0E7NVg6/NoVnqOCLlrP/j
12 | zYn3w4zEyIbTLztY5yPDo8fckeOMhw/vCZQs96cuZMKdfBVWcWlvn4PZDwcquIwY
13 | 29uA18slYpRmRAdzT/DUkqfvM+8sNwYBp9fDJQjwAQKBgQDxUSD9bMxmnCfn/R4N
14 | f3IGGG4QPaHK5ZX8uCtKKaDMvP/OBTHV1hgoZicHQmrw7GH6g9xIR3hMYZjkrryj
15 | bk0c5Wdyasrvgh0QHCxjR78zayvCzwJc0ZOi2QYLDAqkoYjWa1PQcIaY8GkcMleI
16 | 5qR+r9W08YHQU3TOKxyzLe4t6QKBgQDUGSKkCeDAA/B0Df3uwi3H5LjDxdvmM6m7
17 | Tw2pc+29I44mCXM16SeTxt8Gye/Ef/FoqSwTUxrA0pTrYd0iqfvv00jyvMLKH1xN
18 | nZNZhAG1txSCDFKLKDvWduInSifx91qFok6v+4QOdziA8jEofGP5beArWcGuSTQG
19 | ma5Sg0AnAQKBgQCacaoDiBZptZd0ynLpgJ+hdxE6I7fg+38690P9excG8g9l870p
20 | dpSPhpGD++Ylu6QZiTr6p4M+n1gTRCJHFtkTnV7Pw7mOAGBJZz6ha9HbPsQLMiH4
21 | 9cjfeLZ9a3+ETj4dvSMvTFVYnMUo3q9XVwYAbtj/rXG/uyoOqVj89HBzwQKBgD8I
22 | nU/tE5tdUFfdVKthkCOJKRQduGWo0ve03dWPe4crivJo+pF6EmYLw3qMBzL55y/4
23 | nv27RAcsTk/KDONha1tyCosBaE6TlWYHv6Pp5Gwx1el0ag+rTGVHfZy5oDd8EK4I
24 | d6Q7dpqp+ePwloV2umuFqQqZKUN3w/t2LuWc1jMBAoGAYRulhQ1ygdnbYx4WWuik
25 | YY8PuDxCXpbdi3TswO4c/tYrZJuTdt3GpcSnpLCB6R9iogkJem4TtQQ1wMi43IGj
26 | kkS0o6OjSj2d1j6XRoWWdYd4v/9xITVQ/oayjm4V4taC8t1dt1saea6AIHEQPifX
27 | pvSRZVd67sWjvVoelS0YhWQ=
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US1060/passwd.srpv:
--------------------------------------------------------------------------------
1 | V ViNdqDw5X/HPtxrtLolzerHzEeRA6Qe1qdjKEAL9TKYIot.fj/rwA3G0/ucToYM4FcGF/qr3RuDmMxqseKpRYAZREAhF431vc9q/8s971ATxuq/na0CnkC6DN2S1y5DZfXMPUNXyX7e42chDuD6QC5zjqR/W00mEdP.FRg1N6KGdpPeDhtdBtJCHTfvi2eznwXtr.Q351yQEte0KfM6ePy2z.W/7JNuPzyupYO.Gv8L1bxXDijV7FBxcZAH4/s5l AlBJKb17Y3WN3rldBWXCzxgFdMi jsmith 1536
2 | V J7zss8wNtlnwR/l3diauCcp/YR5ZML0h69pt2GeIvQz7jhcSH.lLjJv.vJbwCLRYXOp03xXgmkg3JaoPNzCP9K1QQJRm.bI2BnNE2cRCJoXeV25KBeLOFEFkJuL0vxOqxo5dYU0grIO3kpPNbdt26PSHD2IijZCJuAHrka.n8178oyI6gPaXM3PuOKNlQGyIZT/OW9lt4gp/DfjKBXgU0n5zaC1r93giyCpR44Bs.CpXMUETbhNqWw5xvBLAodW4 A8DrungSwNmUrfiSZjkE4X88rHr estuser 1536
3 | V bacUEW8fOAQf5HJLPrq7gViFf1WQFtZrpe1eCecy/B2fYeu/8pZqBEMx/iA3cdKvWpgmIC.0IJJRZFDTQ2NW8Lzw2oEQAvB0UzJly0KIBJaiWXEuLQfAfaqrhV.eAeuw5DrkKbeJ1tYQS0fnHT44rq/0dcqJC/CvOeB2KZXJr/v788Lt2EK1oy1YiH8jisbcMQ/DC1JCVBGCcwl34fdYX2mxrlTIWSf2tGcIZrgqItfrCg84X2irXFS0dXFiQSiM 4743Yaa4MJoYSJvKiEUJgoF1.eg jdoe 1536
4 | V StpDLTeDkAJkZIDpNb.Lu1hCsZ1AdaU.2LGzemlP/inUeYFp7fkBckuYjbgMvNqB72ehEhF0BUO4kf6MFbBiBRoBpKnGbMMxQkz4wM/fHVTfpMGXgHsA5ucyGK.6ZVYQmycppvYKuItQBc3FcFMZYPeXz.rOK3kw.j/yFcGznP.KQjokGWr4WIxq19R3DHMUetHvhpmkCfDx/b3lbUGS7cIrWBtxHZ7rxVb5eKznz9DcsCYLRRNXQwV7T69oatp/ BfH9DvHA2g582tYWjjGAlJKmz6u srp_user 1536
5 |
--------------------------------------------------------------------------------
/test/UT/US1060/selfsigned-cert.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIB8DCCAZcCCQCqZkOstjte3TAJBgcqhkjOPQQBMIGAMQswCQYDVQQGEwJVUzEL
3 | MAkGA1UECAwCTkMxDDAKBgNVBAcMA1JUUDEPMA0GA1UECgwGVFJJQUQxMQwwCgYD
4 | VQQLDANDM00xGTAXBgNVBAMMEHNlbGYtc2lnbmVkLXRlc3QxHDAaBgkqhkiG9w0B
5 | CQEWDWMzbUBjaXNjby5jb20wHhcNMTMwNzAyMTgwMDU4WhcNMTgwNjA2MTgwMDU4
6 | WjCBgDELMAkGA1UEBhMCVVMxCzAJBgNVBAgMAk5DMQwwCgYDVQQHDANSVFAxDzAN
7 | BgNVBAoMBlRSSUFEMTEMMAoGA1UECwwDQzNNMRkwFwYDVQQDDBBzZWxmLXNpZ25l
8 | ZC10ZXN0MRwwGgYJKoZIhvcNAQkBFg1jM21AY2lzY28uY29tMFkwEwYHKoZIzj0C
9 | AQYIKoZIzj0DAQcDQgAEaR7/nJcnoHyQaqnuL67hE+H6tIS+zQJFObZxQfHhVSHd
10 | phvBZ7O81GdxtSSGgS8V3scxmhPg2lXP7pSG1yCZ4zAJBgcqhkjOPQQBA0gAMEUC
11 | IBYS+3boEF/T89SeveaRfwRVDwprBlykXSr4IAS+uFAgAiEA6actPPK5gDPLNlV5
12 | g5iBnCWmmzz0V0xvz1Q7VeTZR+s=
13 | -----END CERTIFICATE-----
14 |
--------------------------------------------------------------------------------
/test/UT/US1060/selfsigned-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEILhNarJh/OVv6qAyIDx4KZ6FqLW8JDoO8dU+Y5XHNByqoAoGCCqGSM49
6 | AwEHoUQDQgAEaR7/nJcnoHyQaqnuL67hE+H6tIS+zQJFObZxQfHhVSHdphvBZ7O8
7 | 1GdxtSSGgS8V3scxmhPg2lXP7pSG1yCZ4w==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US1159/README:
--------------------------------------------------------------------------------
1 | Use this command to generate the base64 CSR attributes value to be
2 | passed to libest:
3 |
4 | openssl asn1parse -genconf static_csrattrs.txt -noout -out /dev/stdout | openssl base64
5 |
--------------------------------------------------------------------------------
/test/UT/US1159/static_csrattrs.txt:
--------------------------------------------------------------------------------
1 | asn1 = SEQUENCE:seq_section
2 | [seq_section]
3 | # request mac address be included in the response
4 | field1 = OID:1.3.6.1.1.1.1.22
5 | # send arbitrary attribute data to the client
6 | field2 = SEQUENCE:seq_attribute1
7 | # send more arbitrary data to the client
8 | field3 = SEQUENCE:seq_attribute2
9 | #request secp384r1 be used in the request
10 | field4 = OID:1.3.132.0.34
11 | #request commonName
12 | field5 = OID:commonName
13 | #request serialNumber
14 | field6 = OID:serialNumber
15 | #request ecdsa-with-SHA256
16 | field6 = OID:ecdsa-with-SHA256
17 |
18 | [seq_attribute1]
19 | # From RFC2986, an attribute type is defined as
20 | # (a unique object identifier)...
21 | # "2.999" is an example OID similar to "example.com"
22 | field1 = OID:2.999.1
23 | # and an associated set of attribute values (any ASN.1 type)
24 | field2 = SET:attribute1set
25 |
26 | [attribute1set]
27 | field1 = PRINTABLESTRING:Parse SET as 2.999.1 data
28 |
29 | [seq_attribute2]
30 | # From RFC2986, an attribute type is defined as
31 | # (a unique object identifier)...
32 | # "2.999" is an example OID similar to "example.com"
33 | field1 = OID:2.999.2
34 | # and an associated set of attribute values (any ASN.1 type)
35 | field2 = SET:attribute2set
36 |
37 | [attribute2set]
38 | field1 = PRINTABLESTRING:Parse SET as 2.999.2 data
39 | field2 = OID:2.999.3
40 | field3 = OID:2.999.4
41 |
42 |
--------------------------------------------------------------------------------
/test/UT/US1864/Makefile:
--------------------------------------------------------------------------------
1 | # source files.
2 | SRC = ../../util/curl_utils.c
3 | OBJ = $(SRC:.c=.o)
4 |
5 | ifndef OPENSSL_DIR
6 | OPENSSL_DIR=/usr/local/ssl
7 | endif
8 | ifndef CURL_DIR
9 | CURL_DIR=/usr/local/curl
10 | endif
11 |
12 | # include directories
13 | INCLUDES = -I../../../src/est -I../../util -I$(OPENSSL_DIR)/include -I$(CURL_DIR)/include
14 |
15 | # C++ compiler flags (-g -O2 -Wall)
16 | CCFLAGS = -Wall -DNO_SSL_DL
17 |
18 | # compiler
19 | CC = gcc
20 |
21 | # library paths
22 | LIBS = -L../../../src/est/.libs -L$(OPENSSL_DIR)/lib -L$(CURL_DIR)/lib -ldl -lpthread -lssl -lcrypto -lest -lcurl
23 |
24 | # compile flags
25 | LDFLAGS =
26 |
27 | .SUFFIXES: .c
28 |
29 | .c.o:
30 | $(CC) $(INCLUDES) $(CCFLAGS) -c $< -o $@
31 |
32 | clean:
33 | rm -f $(OBJ)
34 | rm -f perftest
35 |
36 |
--------------------------------------------------------------------------------
/test/UT/US1883/Makefile:
--------------------------------------------------------------------------------
1 | # source files.
2 | SRC = ../../util/curl_utils.c
3 | OBJ = $(SRC:.c=.o)
4 |
5 | ifndef OPENSSL_DIR
6 | OPENSSL_DIR=/usr/local/ssl
7 | endif
8 | ifndef CURL_DIR
9 | CURL_DIR=/usr/local/curl
10 | endif
11 |
12 | # include directories
13 | INCLUDES = -I../../../src/est -I../../util -I$(OPENSSL_DIR)/include -I$(CURL_DIR)/include
14 |
15 | # C++ compiler flags (-g -O2 -Wall)
16 | CCFLAGS = -Wall -DNO_SSL_DL
17 |
18 | # compiler
19 | CC = gcc
20 |
21 | # library paths
22 | LIBS = -L../../../src/est/.libs -L$(OPENSSL_DIR)/lib -L$(CURL_DIR)/lib -ldl -lpthread -lssl -lcrypto -lest -lcurl
23 |
24 | # compile flags
25 | LDFLAGS =
26 |
27 | .SUFFIXES: .c
28 |
29 | .c.o:
30 | $(CC) $(INCLUDES) $(CCFLAGS) -c $< -o $@
31 |
32 | clean:
33 | rm -f $(OBJ)
34 | rm -f perftest
35 |
36 |
--------------------------------------------------------------------------------
/test/UT/US1884/Makefile:
--------------------------------------------------------------------------------
1 | # source files.
2 | SRC = ../../util/curl_utils.c
3 | OBJ = $(SRC:.c=.o)
4 |
5 | ifndef OPENSSL_DIR
6 | OPENSSL_DIR=/usr/local/ssl
7 | endif
8 | ifndef CURL_DIR
9 | CURL_DIR=/usr/local/curl
10 | endif
11 |
12 | # include directories
13 | INCLUDES = -I../../../src/est -I../../util -I$(OPENSSL_DIR)/include -I$(CURL_DIR)/include
14 |
15 | # C++ compiler flags (-g -O2 -Wall)
16 | CCFLAGS = -Wall -DNO_SSL_DL
17 |
18 | # compiler
19 | CC = gcc
20 |
21 | # library paths
22 | LIBS = -L../../../src/est/.libs -L$(OPENSSL_DIR)/lib -L$(CURL_DIR)/lib -ldl -lpthread -lssl -lcrypto -lest -lcurl
23 |
24 | # compile flags
25 | LDFLAGS =
26 |
27 | .SUFFIXES: .c
28 |
29 | .c.o:
30 | $(CC) $(INCLUDES) $(CCFLAGS) -c $< -o $@
31 |
32 | clean:
33 | rm -f $(OBJ)
34 | rm -f perftest
35 |
36 |
--------------------------------------------------------------------------------
/test/UT/US2174/key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQD4+U4r8rNRa+kU
3 | 9glkB+JcAiX79tfNlMMyAsdCpqbFyuwul1EWsuP6CQUdF5eJ8tg5IlmLmsD+D+Ww
4 | KSt4qiBG2IhX8pfVLCQEFpxDGaz798hMKU4FnEiK0Vetcg79kXIDSJ1MbxbKZPir
5 | Z5FMLicEL/IzVNKFQxf6pE6MK5nXDS2IvEGR7D+BabuhwYhMD8rto0FcZuNBi15M
6 | 4e3waVM7w/lP2pn9wufc37GdJbZ1Ta6S+dGUfAA0Sv9mR+iaUm9cvIdvrHYKutO0
7 | NlJdq+2cv3zSppzE2QhGlr4kfGa6gBl/fuTPsn5WxrdCHrLRuA5BqhO2SA4voTar
8 | v3sKh3Y1AgMBAAECggEBAKn0fSFQ9omRMTXG0hg/rYyDRuydzyid8TU1YlIkMtn4
9 | MIuJbagiC6/F8oCudxqK9IDj6t56kF2d+nvrTqp677eM3l2y02SIUjmcOaUwZL5H
10 | oaoj1AfObFKensxefM8pNvv42K+xcYxNqtZOx4eKRcX8+MeDkoW3jCnjeV8D8Gs0
11 | UflcoJvyFIghnDJsu5xEUAgZ6NxQAmJTSKOFZlEzvYkhFONpXVgcNVCrSsFGHtNi
12 | /rXtC46HG+N5K+C9a3xm/5HNRpDbhrFlBHFv0/B22rTmh1a8paUPyIhuiM8td87/
13 | MJT1ojbDdbNkyKKz2P31q+PIeX3oSaO3l7dNLFfU1k0CgYEA/6gSs9Gxu/PDZrDV
14 | onjWXDmnRXoUxvte7GNFWEA5yrO8QfaOOPShQdGEbH7Gk/s0UXwS9LqqNr/R00sm
15 | /F6sXp+KlU6r4aQ73rXf8XaAPPVsHKVkCbMO8RQuX/v7iTW5B+yn7Ug3ZRUkxPV1
16 | UsP63CqUkTq/QQQ1MWLbo8RSNAcCgYEA+U7vF3eNDkjKxoSL7xzJDjjf13oxM/rV
17 | 1PqLN+bGwkgqVhJy3m0qhYIEXkPahlcXQ1J+3jQqY59rSbPPaCgn2RoZGmJ/4xJL
18 | IALrYVSciJHwoq4jdcFyBrchjut8DBQgth5QiufXUS57n7TMsfhPkuRsEGrH2NNz
19 | gjoMAgx1DOMCgYEAjiOPCmT60UnNCQomLOfMHoh7ZJhkduEJPJpQ0qkauIVHlNEU
20 | 77uq8GIhowS1OU9AHlHCZEhoHHp3mWc+LLAiW5WOQkb0L0bVdpReBuzgjYPR8PdP
21 | cEkadJTI19rMVdQFpM9B6h3tloiz4cGq0jJeBgyyfzBPZ0GEpYmWHi4nmf8CgYBj
22 | YL+VzyX/J60M7REKw6KxdKJltmOeoMJUH3sXUXqxPysBHGGFoGZuyaEMImgdXOH9
23 | CAlicdDj3UxbGL34eulHdUvEZLctwMEJhaBmL+Al4GbXsiqYagAWBTHvUpckCXHw
24 | pqzccgY2ah0FUIC4AI9Xso4RDT+UgtVsd88JkgWmmQKBgQD2twQm/mkTrH7fGNfF
25 | 2m4Aoy0/xKgZfwgLzOWxBNDJfijGDwGvKmtuvWdt7jIy2LZjNYODg7xKaq/Lvykv
26 | mbUkqKv8QiiMeo3oeOmGd1j5dbrwBT1+Az+om4AC70qrOUtS/mqXh+gDFj4yBarz
27 | fY4IpLimEkzfzPsr/IAQfVJbeQ==
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US4020/antinat-cfg-badcred.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
--------------------------------------------------------------------------------
/test/UT/US4020/antinat-cfg-goodcred.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
--------------------------------------------------------------------------------
/test/UT/US4020/antinat-cfg.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
37 |
--------------------------------------------------------------------------------
/test/UT/US4020/haproxy.cfg:
--------------------------------------------------------------------------------
1 |
2 | global
3 | maxconn 256
4 | log 127.0.0.1 syslog debug
5 |
6 | defaults
7 | timeout connect 5000ms
8 | timeout client 360000ms
9 | timeout server 360000ms
10 |
11 | frontend est-in
12 | bind :::40208 v4v6
13 | default_backend est-out
14 |
15 | backend est-out
16 | server est-host :40200 maxconn 32
17 |
--------------------------------------------------------------------------------
/test/UT/US4747/README:
--------------------------------------------------------------------------------
1 | The following commands were used to create the certs used for
2 | Testing the FQDN logic against certs containing a
3 | SubjectAlternativeName extension. Use these steps to
4 | create a cert that contains the extension.
5 | -------------------------------------------------------
6 | 1. Modify the very last line of ext.cnf
7 |
8 | 2. Generate a key pair using this command:
9 |
10 | openssl genrsa -out key_san_match.pem 1024
11 |
12 | 3. Generate the CSR using this command:
13 |
14 | openssl req -new -out csr.pem -outform PEM -key key_san_match.pem
15 |
16 | optional: view the request...
17 |
18 | openssl req -text -in csr.pem
19 |
20 | 4. Move up one directory and issue the cert using this openssl command:
21 |
22 | openssl ca -days 1500 -config CA/estExampleCA.cnf -in US899/csr.pem -out US899/cert_san_match.pem -extfile US899/ext.cnf
23 |
24 |
--------------------------------------------------------------------------------
/test/UT/US4752/README:
--------------------------------------------------------------------------------
1 | The following commands were used to create the certs used for
2 | Testing the FQDN logic against certs containing a
3 | SubjectAlternativeName extension. Use these steps to
4 | create a cert that contains the extension.
5 | -------------------------------------------------------
6 | 1. Modify the very last line of ext.cnf
7 |
8 | 2. Generate a key pair using this command:
9 |
10 | openssl genrsa -out key_san_match.pem 1024
11 |
12 | 3. Generate the CSR using this command:
13 |
14 | openssl req -new -out csr.pem -outform PEM -key key_san_match.pem
15 |
16 | optional: view the request...
17 |
18 | openssl req -text -in csr.pem
19 |
20 | 4. Move up one directory and issue the cert using this openssl command:
21 |
22 | openssl ca -days 1500 -config CA/estExampleCA.cnf -in US899/csr.pem -out US899/cert_san_match.pem -extfile US899/ext.cnf
23 |
24 |
--------------------------------------------------------------------------------
/test/UT/US4752/ext.cnf:
--------------------------------------------------------------------------------
1 | # Extensions to add to a certificate request
2 |
3 | basicConstraints = CA:FALSE
4 | keyUsage = nonRepudiation, digitalSignature, keyEncipherment
5 | subjectAltName = @alt_names
6 |
7 | [alt_names]
8 | DNS.1 = localhost.cisco.com
9 |
--------------------------------------------------------------------------------
/test/UT/US4752/key_cn_match_wc.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXQIBAAKBgQC3COYY8jLXB0RL87GDAVn4vOwmcZKaU3DywL4q1iZvRRGG1+43
3 | ndMvIrKLm8WWADZzl8NM8noLLODM2fDsuht1jGaxhhD9vt9rZ5wOayoO0ICo3HrU
4 | 3255KKdgGhG3rkCUu7QR7Rtvp5GuM+y/nDDz3JEstD6Myb3x0ar2wh1qzQIDAQAB
5 | AoGBAKMOA2Wvxci3SYlb9AQf3RXwv3NT8+UVdmZbfE3O7vhrED0O+cGEENFJ2ML0
6 | JyYE1H1PcoWG8WApP65ebPmGpdQkSK+/AOp+FV2mM4/PYPoyLDTtt2qQuQj78jdv
7 | jE1ePtB5hQPgL8ab8sfLRJDubfruPXaqEvbJd/6aMfBE5oThAkEA6ckLfTsnOn3G
8 | JEAv8Ym4DG6q+VJFNLEFKDZuaxCnQP+hYdfhRNTRnIK/2GtWlP4/NSE6d/S9Vyzl
9 | E5B8nHEICQJBAMhtUZn3VgB8cmWBzn4c6f60+ukN9ic1toYw5t8jPo2IuivX7j+B
10 | jOvu22xqj1xCisliCtYi6b3TFKtnc3BmlaUCQQCFUk+pBRjj9GIQvkIZHo7FGD+M
11 | m2w4FlN4kUH68K5RFPb1k2U2GZ/H/5BkXSItKajmJaLwUbPAiSvCMn29wX/xAkBu
12 | 5C0V5sbqlfAlQWCiXhUJG9EHSPY8U3edX0kdhD6DyHZY86uZ72+sygcVQQ/4l8h6
13 | C4i7Wa3BnRv+icpREjERAkA0nZPIl+AvS+dHMYSa2Khysy/ikYpQZPqx85f/phD9
14 | cJVSBV6U8kR9FzEqHI4GmUMSwFex1JVxe8u29+piocA/
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US4752/key_cn_mismatch.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXwIBAAKBgQDCTp8nFZFrK+eFqFDZWxqpIwqEHP3nJNwpGPJSVUMl5D7OAlGc
3 | kxlnicmTbdxdVq3LsH4seq2YF3+7GWJ9LvALz8EYb286/D08A5sYZl/cKvpyVL9f
4 | sHXdv4RAsTrFZS2E7kh2HUX6HeKyJV6qBowRZu9A8GgUCKh+YkrS6Yi9PQIDAQAB
5 | AoGBAJ8chpMYxEXAZAw88keqpMBP43Kf0wKOWoKE3RmynBPRPeSwXWgbxLfWSuyh
6 | D8yXCCY91nRR2QksZPovJUlhQErdac3DtD991ucZUoVuY9hJXnKJ2PKbyc5sWtwj
7 | 8u9Uj4XHukk+NPgAAyGfg3qREVFU+Cs8TBTqbQOofAjFvcM5AkEA8R31DCCsuan6
8 | 66/tJbbgwGmnhh7NmUSfGM/ayb0fPAhhvy+MdGXlV4BjBOswc++3FsUsdPdOhaDH
9 | Hvk9Vv/HqwJBAM5M/dRQXNl0yXlDFyzPTZK8sq/3b0YZ2bZHNt2j0ID69RGd6+//
10 | qMC4msUudWahMBrJpz3ImHMd724jTB8JBrcCQQDA5DNesWEc4wQuur4gNs5Uf/Ga
11 | FVhrbf9NLTOdwqOTNi1kcpiNodq4hqgwjipkBXjWSYUISbRSqM3DVKciy1sjAkEA
12 | kAU/ztCrgUP+wyELNMUkKqSBOkdK721sh8v/iYurK+AG5l2RMOMSNDisE6vzWcp9
13 | grX0gzVe+D6VwBX0NlZe0QJBAJbLKGVhThv0XxkocM8g2wnbE+z3VZrcY93WuLuD
14 | WxOe2/JDbI9KeXbUMdeTAq89nVicv3JiQaYD/ZzhPnQJvb4=
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US4752/key_cn_mismatch_ip.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXAIBAAKBgQDY/pY1FTRIpWwhZY4Ln4VZLiT2myMq2dNxkrMkLR+u9bsbhOnt
3 | Qoq5R7yScGmTp8hQSwWJNmc0tCqX+2SeSRloDSE2NmNv39k59+na//6aqObVdbs/
4 | 5Tj1wib08fS2XJunSyx9NP/Ah63cLGq9IswTeP/1k8djEETgPywEkSab6wIDAQAB
5 | AoGAdbXNB6ij/xB1UryDTHzRWmo0tO29Kv6Uu9RHh0VPHZrBUBFO0Fy7YfyvJ4UB
6 | UI7AlAXOT/uKCsX9IQrHLzIaLB5SWb0tpCsCjB8++SQeIfKdpcNAyAhR3w9qQu2w
7 | c+d3AepsFeHwcSrqoeLAdg3/qfY5MMD6AFyI3+Xfjr27tUECQQD7GiRwUCJMd5dW
8 | P/kiU95MNuKg5N756QUSX3xRAjInQSJrZdILmQWITeUtdDROdtnmtOAHWK0YSVb9
9 | b0+N4DXhAkEA3Tohd8qbcvF63pcFMWW1D+gid1njEWQ1QktGQFvN1qP3OMAp+hxJ
10 | W3KCNWgdtIdJNnHGX4suStAlwZnDhxszSwJAZjkmTHLTA75L5dj1W3w5K13MtSN3
11 | gtXSMsCco335XPGvSXmSIRaSogLUIcUE5kyMONe5vEPlc9WnjFUcVe3JAQJAX7Vj
12 | f1DfObYxIxWRAJLw52XVa28u5npE9F5ekT9maQLc1OeGAZe1QOPkYzidCVoyGWTV
13 | nsY3C9TLUNu2FMB2ywJBAIEbxQzQ0C/FnZ6mt1IZOBvatdxbqhQQx8H2Lued1Jh5
14 | zkxLQBunmCxZkZgA4oGZnX3s2CjKJWHhib7zXnd0Ygc=
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US4752/key_cn_mismatch_wc.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXgIBAAKBgQDASv1LrLzNytJ9ugPUSV5o+0fd9QGc7GWCf1CfJD+fRJYU1Zxk
3 | qRlRgy9eYhGgRhQf6NnEYSNr/pZZo83lw4IIxD9VpFx6Y527WOx5YjHCTcQdQwW8
4 | CXihwSchQbcDghGWXbWXkqGT+BziXzPmAw4DnoRqctYAn3d1Lb7mhPsiswIDAQAB
5 | AoGBAIdbQflm2nAx+QEvU0q3apGTb/85W61OahX18JZVOcOuz8ZSpwfkUEIkic9y
6 | UN309m2PxtqJVhnK16K5v1Gg0YKJ4fbffodwQstLhinQwjNEb+rfXusmzKyjV6nu
7 | zZ1C6+b5wijQenybIxRIm4sWFGxm5k5IFQiPQXN2bzkAHVfBAkEA4Bm1ohumDcRd
8 | 2G/KuUdaiNdM6/GkviyXPDKa4Jvkh3pLcVzd2xa9Eb5Hc7tiwWdL8LPEbqssxHpu
9 | Eeics5NMCwJBANuqNF3aaufOKHtwsDg4c1G/mh3MweoNXAFNVCfW+a9E/0nKVqiV
10 | 194XfRaq24w8iN5vG4l8wPbKUHiVitZSBPkCQQDZ4IUT/7eZKPJorH+3VSUzZ8e0
11 | mXInJyk+cKDdgRNVmFPi+nwENv5JUusbHPMtv+U4Nz7ire/PcoyzQqmfebTzAkAi
12 | XMHMXLqUgH98r+ghI1OG2j41oy5CesyFt58OjGaKsHRvCqP7w1T9fRcoUJn/mgif
13 | Iypfm5BkCsoD0wDg/fuhAkEA3APsWcyaOdTIRdmjnJVZ5wlWKRgMnPT6kTwkRlY8
14 | Fl1c5uNZnxtpgmOd+10O5a/16aNoumsFfDP4z/anAeo0NA==
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US4752/test16_crl.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN X509 CRL-----
2 | MIHGMG4wCgYIKoZIzj0EAwIwFzEVMBMGA1UEAxMMZXN0RXhhbXBsZUNBFw0yMDA3
3 | MDEyMjUxMTNaFw0yMDA3MzEyMjUxMTNaMCkwEgIBBhcNMTMwNzAyMTczNDE1WjAT
4 | AgIExhcNMTcwMjA2MTUyNDA3WjAKBggqhkjOPQQDAgNIADBFAiEAvUb7k0GFsk3P
5 | I5jZdoncEXVkqbPNaf9cME8vO4feQx4CICvSmXaKNTQERhrBerfUeROxOwQNdu3O
6 | +EOL7qa/84y5
7 | -----END X509 CRL-----
8 |
--------------------------------------------------------------------------------
/test/UT/US4752/test17_crl.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN X509 CRL-----
2 | MIHdMIGDMAoGCCqGSM49BAMCMBcxFTATBgNVBAMTDGVzdEV4YW1wbGVDQRcNMjAw
3 | NzAxMjI1MTE5WhcNMjAwNzMxMjI1MTE5WjA+MBICAQYXDTEzMDcwMjE3MzQxNVow
4 | EwICAukXDTIwMDcwMTIyNTExOFowEwICBMYXDTE3MDIwNjE1MjQwN1owCgYIKoZI
5 | zj0EAwIDSQAwRgIhAJHYiaY3EiDoNr1ulrn7jI3/oA6xy9iZjYlrQG7/8+ClAiEA
6 | 9I0/50gF9pLPR4cbLtHtgSe/8iiRxAvVTGFvEuxuLRo=
7 | -----END X509 CRL-----
8 |
--------------------------------------------------------------------------------
/test/UT/US4880/key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQD4+U4r8rNRa+kU
3 | 9glkB+JcAiX79tfNlMMyAsdCpqbFyuwul1EWsuP6CQUdF5eJ8tg5IlmLmsD+D+Ww
4 | KSt4qiBG2IhX8pfVLCQEFpxDGaz798hMKU4FnEiK0Vetcg79kXIDSJ1MbxbKZPir
5 | Z5FMLicEL/IzVNKFQxf6pE6MK5nXDS2IvEGR7D+BabuhwYhMD8rto0FcZuNBi15M
6 | 4e3waVM7w/lP2pn9wufc37GdJbZ1Ta6S+dGUfAA0Sv9mR+iaUm9cvIdvrHYKutO0
7 | NlJdq+2cv3zSppzE2QhGlr4kfGa6gBl/fuTPsn5WxrdCHrLRuA5BqhO2SA4voTar
8 | v3sKh3Y1AgMBAAECggEBAKn0fSFQ9omRMTXG0hg/rYyDRuydzyid8TU1YlIkMtn4
9 | MIuJbagiC6/F8oCudxqK9IDj6t56kF2d+nvrTqp677eM3l2y02SIUjmcOaUwZL5H
10 | oaoj1AfObFKensxefM8pNvv42K+xcYxNqtZOx4eKRcX8+MeDkoW3jCnjeV8D8Gs0
11 | UflcoJvyFIghnDJsu5xEUAgZ6NxQAmJTSKOFZlEzvYkhFONpXVgcNVCrSsFGHtNi
12 | /rXtC46HG+N5K+C9a3xm/5HNRpDbhrFlBHFv0/B22rTmh1a8paUPyIhuiM8td87/
13 | MJT1ojbDdbNkyKKz2P31q+PIeX3oSaO3l7dNLFfU1k0CgYEA/6gSs9Gxu/PDZrDV
14 | onjWXDmnRXoUxvte7GNFWEA5yrO8QfaOOPShQdGEbH7Gk/s0UXwS9LqqNr/R00sm
15 | /F6sXp+KlU6r4aQ73rXf8XaAPPVsHKVkCbMO8RQuX/v7iTW5B+yn7Ug3ZRUkxPV1
16 | UsP63CqUkTq/QQQ1MWLbo8RSNAcCgYEA+U7vF3eNDkjKxoSL7xzJDjjf13oxM/rV
17 | 1PqLN+bGwkgqVhJy3m0qhYIEXkPahlcXQ1J+3jQqY59rSbPPaCgn2RoZGmJ/4xJL
18 | IALrYVSciJHwoq4jdcFyBrchjut8DBQgth5QiufXUS57n7TMsfhPkuRsEGrH2NNz
19 | gjoMAgx1DOMCgYEAjiOPCmT60UnNCQomLOfMHoh7ZJhkduEJPJpQ0qkauIVHlNEU
20 | 77uq8GIhowS1OU9AHlHCZEhoHHp3mWc+LLAiW5WOQkb0L0bVdpReBuzgjYPR8PdP
21 | cEkadJTI19rMVdQFpM9B6h3tloiz4cGq0jJeBgyyfzBPZ0GEpYmWHi4nmf8CgYBj
22 | YL+VzyX/J60M7REKw6KxdKJltmOeoMJUH3sXUXqxPysBHGGFoGZuyaEMImgdXOH9
23 | CAlicdDj3UxbGL34eulHdUvEZLctwMEJhaBmL+Al4GbXsiqYagAWBTHvUpckCXHw
24 | pqzccgY2ah0FUIC4AI9Xso4RDT+UgtVsd88JkgWmmQKBgQD2twQm/mkTrH7fGNfF
25 | 2m4Aoy0/xKgZfwgLzOWxBNDJfijGDwGvKmtuvWdt7jIy2LZjNYODg7xKaq/Lvykv
26 | mbUkqKv8QiiMeo3oeOmGd1j5dbrwBT1+Az+om4AC70qrOUtS/mqXh+gDFj4yBarz
27 | fY4IpLimEkzfzPsr/IAQfVJbeQ==
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US4880/tc2-new-cert.pkcs7b64:
--------------------------------------------------------------------------------
1 | MIIDYwYJKoZIhvcNAQcCoIIDVDCCA1ACAQExADALBgkqhkiG9w0BBwGgggM4MIID
2 | NDCCAtqgAwIBAgICEQ0wCgYIKoZIzj0EAwIwFzEVMBMGA1UEAxMMZXN0RXhhbXBs
3 | ZUNBMB4XDTIwMDcwMTIyNTE0NFoXDTIxMDcwMTIyNTE0NFowFTETMBEGA1UEAxMK
4 | VVM0NzUyLVRDNTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMISRMEb
5 | DhS8IKNoNmXEaFRDbAxIbuCBSY3EEpbVQj741xEcYmA5GVY7RyKyQmeUsAopSWNc
6 | MW0xu2+yNGUzn1T1CB63MUwCACZCYWXQjQ9NBv2RzVjWM6bW8T9h+DjRm7GKD+C8
7 | UyVKt8VeJumaDjzHkAwgG6wzh0fXccqKhH6dpma3ZN3o4fEMRjsTXDib8OyOSYQP
8 | 3pu3fWHaDb1b1JdcnQ4xJZCsqEWtbMsPFgsp+ltKA2FdWocYXluYkgxmcReqvQfY
9 | yR0de337OEGKOUocVTinJzOxllhfbRXzQ1uAc6oKeZ6O0aBMWS3X43dUHkXTncA6
10 | V89Pr7AB5IGxtwsd8GEY+JEJdNOT0dYNpBGPQDHrDEYSvvfprsRnXec4OEAnelJ7
11 | ItqZKPEVKc3lyl9NEdZ2yWgRanN9CwkuaSH1yPa/bsj2/vRuciAIrbzHxg3iRy+q
12 | ecWueGghX0vQVTRAtOtrw50sXT/+Czspp6zyEPmHWhPQIbHaNNPUL+lH0pCpwALX
13 | C2jD2Haxm3Bd0newS1T453m9W24spuGOmhKhQOdO7Ipr1badIEEPozFTiDFCXxD5
14 | QjCnULcPS1dvNrCVLm2wO0b5af4Cosdh709uXYSJBEhAtgGBg36Pe69HYoGbi/Xv
15 | OZ3S2+b2Q6ayPlO4ulkxHiKRBaJ5BqXx3YlJAgMBAAGjTTBLMAkGA1UdEwQCMAAw
16 | HQYDVR0OBBYEFHZbBC8RpsWJ4PKeMSMgdPLqAEphMB8GA1UdIwQYMBaAFGblVsqT
17 | KwILV6TU4u1fyqTufYP5MAoGCCqGSM49BAMCA0gAMEUCIQDzZq9K2auvCP2XUsjb
18 | C8B15uhNZqhcMmQXWqirwrOrNQIgAK7mLpNeNNs/6+MNg/Koch5DB20ikli6GRNl
19 | varU/3QxAA==
20 |
--------------------------------------------------------------------------------
/test/UT/US5052/midsize.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIIBNTCB2wIBADB5MQswCQYDVQQGEwJVUzELMAkGA1UECAwCTkMxDDAKBgNVBAcM
3 | A1JUUDEWMBQGA1UECgwNQ2lzY28gU3lzdGVtczEZMBcGA1UECwwQQ2lzY29QS0kg
4 | RGV2VGVzdDEcMBoGA1UEAwwTbG9jYWxob3N0LmNpc2NvLmNvbTBZMBMGByqGSM49
5 | AgEGCCqGSM49AwEHA0IABO7BaPVMbKjDX9wjLb3GtBLMMYOuESm7k1M/212BLhLS
6 | qNej3ur8n1XkuqXtcRboRTpkJ+vX6IWRH4CFYQutVLagADAKBggqhkjOPQQDAgNJ
7 | ADBGAiEApLKgepwPah4Gl2TacvdqMTSJjskSlA+iEfXsoVZFr4kCIQD8K+H4qYOW
8 | 3XzSkYYInN+quehVW1K3R6n/hbZWazyJjA==
9 | -----END CERTIFICATE REQUEST-----
10 |
--------------------------------------------------------------------------------
/test/UT/US5052/midsize.csr.der:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/test/UT/US5052/midsize.csr.der
--------------------------------------------------------------------------------
/test/UT/US5240/midsize.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIIBNTCB2wIBADB5MQswCQYDVQQGEwJVUzELMAkGA1UECAwCTkMxDDAKBgNVBAcM
3 | A1JUUDEWMBQGA1UECgwNQ2lzY28gU3lzdGVtczEZMBcGA1UECwwQQ2lzY29QS0kg
4 | RGV2VGVzdDEcMBoGA1UEAwwTbG9jYWxob3N0LmNpc2NvLmNvbTBZMBMGByqGSM49
5 | AgEGCCqGSM49AwEHA0IABO7BaPVMbKjDX9wjLb3GtBLMMYOuESm7k1M/212BLhLS
6 | qNej3ur8n1XkuqXtcRboRTpkJ+vX6IWRH4CFYQutVLagADAKBggqhkjOPQQDAgNJ
7 | ADBGAiEApLKgepwPah4Gl2TacvdqMTSJjskSlA+iEfXsoVZFr4kCIQD8K+H4qYOW
8 | 3XzSkYYInN+quehVW1K3R6n/hbZWazyJjA==
9 | -----END CERTIFICATE REQUEST-----
10 |
--------------------------------------------------------------------------------
/test/UT/US5240/proxy_key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQD4+U4r8rNRa+kU
3 | 9glkB+JcAiX79tfNlMMyAsdCpqbFyuwul1EWsuP6CQUdF5eJ8tg5IlmLmsD+D+Ww
4 | KSt4qiBG2IhX8pfVLCQEFpxDGaz798hMKU4FnEiK0Vetcg79kXIDSJ1MbxbKZPir
5 | Z5FMLicEL/IzVNKFQxf6pE6MK5nXDS2IvEGR7D+BabuhwYhMD8rto0FcZuNBi15M
6 | 4e3waVM7w/lP2pn9wufc37GdJbZ1Ta6S+dGUfAA0Sv9mR+iaUm9cvIdvrHYKutO0
7 | NlJdq+2cv3zSppzE2QhGlr4kfGa6gBl/fuTPsn5WxrdCHrLRuA5BqhO2SA4voTar
8 | v3sKh3Y1AgMBAAECggEBAKn0fSFQ9omRMTXG0hg/rYyDRuydzyid8TU1YlIkMtn4
9 | MIuJbagiC6/F8oCudxqK9IDj6t56kF2d+nvrTqp677eM3l2y02SIUjmcOaUwZL5H
10 | oaoj1AfObFKensxefM8pNvv42K+xcYxNqtZOx4eKRcX8+MeDkoW3jCnjeV8D8Gs0
11 | UflcoJvyFIghnDJsu5xEUAgZ6NxQAmJTSKOFZlEzvYkhFONpXVgcNVCrSsFGHtNi
12 | /rXtC46HG+N5K+C9a3xm/5HNRpDbhrFlBHFv0/B22rTmh1a8paUPyIhuiM8td87/
13 | MJT1ojbDdbNkyKKz2P31q+PIeX3oSaO3l7dNLFfU1k0CgYEA/6gSs9Gxu/PDZrDV
14 | onjWXDmnRXoUxvte7GNFWEA5yrO8QfaOOPShQdGEbH7Gk/s0UXwS9LqqNr/R00sm
15 | /F6sXp+KlU6r4aQ73rXf8XaAPPVsHKVkCbMO8RQuX/v7iTW5B+yn7Ug3ZRUkxPV1
16 | UsP63CqUkTq/QQQ1MWLbo8RSNAcCgYEA+U7vF3eNDkjKxoSL7xzJDjjf13oxM/rV
17 | 1PqLN+bGwkgqVhJy3m0qhYIEXkPahlcXQ1J+3jQqY59rSbPPaCgn2RoZGmJ/4xJL
18 | IALrYVSciJHwoq4jdcFyBrchjut8DBQgth5QiufXUS57n7TMsfhPkuRsEGrH2NNz
19 | gjoMAgx1DOMCgYEAjiOPCmT60UnNCQomLOfMHoh7ZJhkduEJPJpQ0qkauIVHlNEU
20 | 77uq8GIhowS1OU9AHlHCZEhoHHp3mWc+LLAiW5WOQkb0L0bVdpReBuzgjYPR8PdP
21 | cEkadJTI19rMVdQFpM9B6h3tloiz4cGq0jJeBgyyfzBPZ0GEpYmWHi4nmf8CgYBj
22 | YL+VzyX/J60M7REKw6KxdKJltmOeoMJUH3sXUXqxPysBHGGFoGZuyaEMImgdXOH9
23 | CAlicdDj3UxbGL34eulHdUvEZLctwMEJhaBmL+Al4GbXsiqYagAWBTHvUpckCXHw
24 | pqzccgY2ah0FUIC4AI9Xso4RDT+UgtVsd88JkgWmmQKBgQD2twQm/mkTrH7fGNfF
25 | 2m4Aoy0/xKgZfwgLzOWxBNDJfijGDwGvKmtuvWdt7jIy2LZjNYODg7xKaq/Lvykv
26 | mbUkqKv8QiiMeo3oeOmGd1j5dbrwBT1+Az+om4AC70qrOUtS/mqXh+gDFj4yBarz
27 | fY4IpLimEkzfzPsr/IAQfVJbeQ==
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US5241/midsize.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIIBNTCB2wIBADB5MQswCQYDVQQGEwJVUzELMAkGA1UECAwCTkMxDDAKBgNVBAcM
3 | A1JUUDEWMBQGA1UECgwNQ2lzY28gU3lzdGVtczEZMBcGA1UECwwQQ2lzY29QS0kg
4 | RGV2VGVzdDEcMBoGA1UEAwwTbG9jYWxob3N0LmNpc2NvLmNvbTBZMBMGByqGSM49
5 | AgEGCCqGSM49AwEHA0IABO7BaPVMbKjDX9wjLb3GtBLMMYOuESm7k1M/212BLhLS
6 | qNej3ur8n1XkuqXtcRboRTpkJ+vX6IWRH4CFYQutVLagADAKBggqhkjOPQQDAgNJ
7 | ADBGAiEApLKgepwPah4Gl2TacvdqMTSJjskSlA+iEfXsoVZFr4kCIQD8K+H4qYOW
8 | 3XzSkYYInN+quehVW1K3R6n/hbZWazyJjA==
9 | -----END CERTIFICATE REQUEST-----
10 |
--------------------------------------------------------------------------------
/test/UT/US5282/midsize.csr:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE REQUEST-----
2 | MIIBNTCB2wIBADB5MQswCQYDVQQGEwJVUzELMAkGA1UECAwCTkMxDDAKBgNVBAcM
3 | A1JUUDEWMBQGA1UECgwNQ2lzY28gU3lzdGVtczEZMBcGA1UECwwQQ2lzY29QS0kg
4 | RGV2VGVzdDEcMBoGA1UEAwwTbG9jYWxob3N0LmNpc2NvLmNvbTBZMBMGByqGSM49
5 | AgEGCCqGSM49AwEHA0IABO7BaPVMbKjDX9wjLb3GtBLMMYOuESm7k1M/212BLhLS
6 | qNej3ur8n1XkuqXtcRboRTpkJ+vX6IWRH4CFYQutVLagADAKBggqhkjOPQQDAgNJ
7 | ADBGAiEApLKgepwPah4Gl2TacvdqMTSJjskSlA+iEfXsoVZFr4kCIQD8K+H4qYOW
8 | 3XzSkYYInN+quehVW1K3R6n/hbZWazyJjA==
9 | -----END CERTIFICATE REQUEST-----
10 |
--------------------------------------------------------------------------------
/test/UT/US748/cert-RA.pem:
--------------------------------------------------------------------------------
1 | subject=/CN=TESTCN
2 | issuer=/CN=estExampleCA
3 | -----BEGIN CERTIFICATE-----
4 | MIIB1jCCAX2gAwIBAgICAmQwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxlc3RFeGFt
5 | cGxlQ0EwHhcNMTMwOTIzMTkxMzAwWhcNMTQwOTIzMTkxMzAwWjARMQ8wDQYDVQQD
6 | EwZURVNUQ04wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAMTaFZsPzLVbiH02
7 | wFtogtD81CLLCKY2xHsxENmz1mBTJFqfDGXMqOQ4+Dx0gRsgM/On8BqLPyYRdFye
8 | FXjVzutx+B8+Thc4v9260hqkFy7qVHSdXkS4K1DcpBqFabREVW5zhWYycP2VLThE
9 | Hn+ZNAqW2f03TjZa4rpYvynPPkUBAgMBAAGjeTB3MAkGA1UdEwQCMAAwKgYDVR0l
10 | AQH/BCAwHgYIKwYBBQUHAwEGCCsGAQUFBwMCBggrBgEFBQcDHDAdBgNVHQ4EFgQU
11 | cOutC7mextB+S2KVI+GbZpupJfowHwYDVR0jBBgwFoAUZuVWypMrAgtXpNTi7V/K
12 | pO59g/kwCQYHKoZIzj0EAQNIADBFAiBowcOZXLakYhkx6ETu6qIz7Xc7JCi4h6xW
13 | P2tQVXZcWAIhAM7aTblvz99kN+uxw1q819loUMt2NHk4pWh5aijiSbWU
14 | -----END CERTIFICATE-----
15 |
16 |
--------------------------------------------------------------------------------
/test/UT/US748/key-RA.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICWwIBAAKBgQDE2hWbD8y1W4h9NsBbaILQ/NQiywimNsR7MRDZs9ZgUyRanwxl
3 | zKjkOPg8dIEbIDPzp/Aaiz8mEXRcnhV41c7rcfgfPk4XOL/dutIapBcu6lR0nV5E
4 | uCtQ3KQahWm0RFVuc4VmMnD9lS04RB5/mTQKltn9N042WuK6WL8pzz5FAQIDAQAB
5 | AoGAIcqV/uI9b7xgt63YY1iTbDCaccaMm4u3OrZ3gAeA+1QKX4wB4s+5BkRJSIdv
6 | SirDAEaJzuSsWGqSoPt6EB4TwMXf0CWNIzTMLoUUCfEKHNANCxR2MlJqK/RvWvgt
7 | UIMLORKvLU58YWN6QUsDl65/nI8S40EpoqnuZNkUcifd64ECQQDkzxv4zIpqWGWL
8 | 7WhpTx9OxgU+XKsHaw+DsE2QWBj4o1yyGhDhdknuIdiWfNJYjd1bCUu06+nsMXGi
9 | 3/X2dJuZAkEA3D7EQMoIMDizF2WbIYWG7x45c6OlyFCEXxyu4pW1rxkO75t79oKl
10 | dM7q3iv4HcIYsUq/KVgQAOVJFiTaF4AVqQJAYUnW4PFHoXQ4qUim7rAf5cS5Eg0h
11 | A6R4Ekxyjn+HDqGXlnsS1msPgFuP1lz4q4KWrlDDiggNjMpxQQntcX+fcQJAa2Du
12 | refSNjBuoGmZSK6hKtPBju+qVA9tejGx0ibLfaLp9UgJGBZ6NIjtWYR2Y4vOHiIj
13 | MTUOGGGxUGqHKg34gQJAAUm9UoKZYdwdWHgsB2OOE4NUMh1r4aEsBgOy6n7I4p+P
14 | RxKYswC0aPmjY60lWU7TB/eGkeb9kVEiDv+IOcDCsQ==
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US748/key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQD4+U4r8rNRa+kU
3 | 9glkB+JcAiX79tfNlMMyAsdCpqbFyuwul1EWsuP6CQUdF5eJ8tg5IlmLmsD+D+Ww
4 | KSt4qiBG2IhX8pfVLCQEFpxDGaz798hMKU4FnEiK0Vetcg79kXIDSJ1MbxbKZPir
5 | Z5FMLicEL/IzVNKFQxf6pE6MK5nXDS2IvEGR7D+BabuhwYhMD8rto0FcZuNBi15M
6 | 4e3waVM7w/lP2pn9wufc37GdJbZ1Ta6S+dGUfAA0Sv9mR+iaUm9cvIdvrHYKutO0
7 | NlJdq+2cv3zSppzE2QhGlr4kfGa6gBl/fuTPsn5WxrdCHrLRuA5BqhO2SA4voTar
8 | v3sKh3Y1AgMBAAECggEBAKn0fSFQ9omRMTXG0hg/rYyDRuydzyid8TU1YlIkMtn4
9 | MIuJbagiC6/F8oCudxqK9IDj6t56kF2d+nvrTqp677eM3l2y02SIUjmcOaUwZL5H
10 | oaoj1AfObFKensxefM8pNvv42K+xcYxNqtZOx4eKRcX8+MeDkoW3jCnjeV8D8Gs0
11 | UflcoJvyFIghnDJsu5xEUAgZ6NxQAmJTSKOFZlEzvYkhFONpXVgcNVCrSsFGHtNi
12 | /rXtC46HG+N5K+C9a3xm/5HNRpDbhrFlBHFv0/B22rTmh1a8paUPyIhuiM8td87/
13 | MJT1ojbDdbNkyKKz2P31q+PIeX3oSaO3l7dNLFfU1k0CgYEA/6gSs9Gxu/PDZrDV
14 | onjWXDmnRXoUxvte7GNFWEA5yrO8QfaOOPShQdGEbH7Gk/s0UXwS9LqqNr/R00sm
15 | /F6sXp+KlU6r4aQ73rXf8XaAPPVsHKVkCbMO8RQuX/v7iTW5B+yn7Ug3ZRUkxPV1
16 | UsP63CqUkTq/QQQ1MWLbo8RSNAcCgYEA+U7vF3eNDkjKxoSL7xzJDjjf13oxM/rV
17 | 1PqLN+bGwkgqVhJy3m0qhYIEXkPahlcXQ1J+3jQqY59rSbPPaCgn2RoZGmJ/4xJL
18 | IALrYVSciJHwoq4jdcFyBrchjut8DBQgth5QiufXUS57n7TMsfhPkuRsEGrH2NNz
19 | gjoMAgx1DOMCgYEAjiOPCmT60UnNCQomLOfMHoh7ZJhkduEJPJpQ0qkauIVHlNEU
20 | 77uq8GIhowS1OU9AHlHCZEhoHHp3mWc+LLAiW5WOQkb0L0bVdpReBuzgjYPR8PdP
21 | cEkadJTI19rMVdQFpM9B6h3tloiz4cGq0jJeBgyyfzBPZ0GEpYmWHi4nmf8CgYBj
22 | YL+VzyX/J60M7REKw6KxdKJltmOeoMJUH3sXUXqxPysBHGGFoGZuyaEMImgdXOH9
23 | CAlicdDj3UxbGL34eulHdUvEZLctwMEJhaBmL+Al4GbXsiqYagAWBTHvUpckCXHw
24 | pqzccgY2ah0FUIC4AI9Xso4RDT+UgtVsd88JkgWmmQKBgQD2twQm/mkTrH7fGNfF
25 | 2m4Aoy0/xKgZfwgLzOWxBNDJfijGDwGvKmtuvWdt7jIy2LZjNYODg7xKaq/Lvykv
26 | mbUkqKv8QiiMeo3oeOmGd1j5dbrwBT1+Az+om4AC70qrOUtS/mqXh+gDFj4yBarz
27 | fY4IpLimEkzfzPsr/IAQfVJbeQ==
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US748/test5.hdr:
--------------------------------------------------------------------------------
1 | HTTP/1.1 202 Accepted
2 | Status: 202 Accepted
3 | Retry-After: 3600
4 |
5 |
--------------------------------------------------------------------------------
/test/UT/US893/cert-untrusted.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIICpDCCAYwCCQCUB7hn41CvJzANBgkqhkiG9w0BAQUFADAUMRIwEAYDVQQDEwkx
3 | MjcuMC4wLjEwHhcNMTMxMTA3MjAzMDIwWhcNMjcwNzE3MjAzMDIwWjAUMRIwEAYD
4 | VQQDEwkxMjcuMC4wLjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9
5 | rrDBF0w67vyiGGN4WXVmiwapppuy17TLCOuvo/A0lW4Gjm028gQYNL1PbknqUaiU
6 | iKsE9st/GeWUr/sgY5JaqhLtcG+8/YyQl1NcNsxCkd1JY1rd9e1RWgVuBVZorajh
7 | 5xOn1Y+KBGjZGVRkq/Z9A/F3jc4vmh2/LdUSxp0aIFGu5ltra5/c+Q7B4QIWGXNP
8 | F4e0Ibe3m6/ZicBwY3Ze6qZH4tiaXUXCBknU2ZNxcDZAXrOeUYNdzF3C2mkhVEws
9 | +kczrCExMTJjuVfTHWus+4Tr1RErtuZivSpURdHJ6qmeN1RYFdaHM3z6BCmcnQpL
10 | KHcohyAQeS0Z1MD48xKxAgMBAAEwDQYJKoZIhvcNAQEFBQADggEBAJoR6b+g0aDS
11 | UNltryeqyE8QZO1hHR7KpeLfQlYH7fM2l96NiwNr6x7oGzw76nTOegr6IB6lNKNS
12 | mpo4ul+IPhQHtBgzLct+1FtQVnme7S6rBEzxBPeikwrHF0TVK8qwAFxxIFADUjpX
13 | sW/slNdqrrGs6IYZW4toFcFS/I3LmqwDiKO6/6pQMtXwXUs4saEFR+xOBhIR2uBT
14 | 4FExwNQL0RaTOE/HtBKFmvRz3Ndqp+fmrdv0uoDZNWdJo2pFuBlHXrjZ/HtgUmcr
15 | Gu4JQ5NAWChFs5kih0KFImC6V+pKuehbbwyJCbIWzpaS8dRrLmE35C+q4TioYo4z
16 | fOu1zUXJC/k=
17 | -----END CERTIFICATE-----
18 |
--------------------------------------------------------------------------------
/test/UT/US893/key-expired.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXQIBAAKBgQDjyjhl+5xGpiKxvhe8UAP+yHJzI8ZhAbYWKMFv+A6cxcIXN/a7
3 | dCdGFNGgEdp1PotlaE7+eworCSgFf6gPkgK7PG7bevV2oe5V5jxWcU6g6By+Vw6Z
4 | 9ZFQhSLutjUGtVKFi8N++wP6P94t1Bl2viJKbO+SAlkg5Lb96GG+cJYYJQIDAQAB
5 | AoGAMHc+OLSoM3/1scu4USDVOMh9UXIzK0Cp9V0Gi0REF6cb/MSzgn7cPFUBpQUn
6 | bfq4vgLLi+mx6CYylbjrkSSH39fcuZgnnrnmI+kQrJ0eVteeeUoNjUipTFjqfsFq
7 | DrXmWwyFM6HjvQAbs4eW1cUtBPqsG8aF0GSGsux1S6jKQgECQQD2BBdY9QKqTG3e
8 | 90X94l3ElLTjUbjE3iirWDKOhsrJVn+jNNJynzDqwstgKZ57Ww8NHAruXKw5xvaG
9 | hOD+1s21AkEA7QjGZKjv5oF801bg54ue0z2z0LrV6e7XUtYydold2a3efl0HK5TV
10 | mWPfh0fey+gXivyuPrJzmL30hkiFWwUmsQJBAPCsm/Ko7wyPbMU9/zka5UTVfgkM
11 | /8eI1xyZUgxhDa3ec0vE90SvO/nOy4ut658ePCFFF+SMwOhdHvwGrt5gYikCQFqm
12 | yHkmwtj9HKgWydzD4PIY3vQtADJ/TYo4sQP0dRgTDsx095ELUsVfFNW//s0s7hQR
13 | nvILfXok66ePhLDSv4ECQQCg6uy6bTnDK6Yx5aiDU6qTOUZ0+OmFXSKdNS92dDpT
14 | VVAbejboH0h6a+svElp/g8ySW4iHG3jdvRhHvyiw9y9T
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US893/key-untrusted.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC9rrDBF0w67vyi
3 | GGN4WXVmiwapppuy17TLCOuvo/A0lW4Gjm028gQYNL1PbknqUaiUiKsE9st/GeWU
4 | r/sgY5JaqhLtcG+8/YyQl1NcNsxCkd1JY1rd9e1RWgVuBVZorajh5xOn1Y+KBGjZ
5 | GVRkq/Z9A/F3jc4vmh2/LdUSxp0aIFGu5ltra5/c+Q7B4QIWGXNPF4e0Ibe3m6/Z
6 | icBwY3Ze6qZH4tiaXUXCBknU2ZNxcDZAXrOeUYNdzF3C2mkhVEws+kczrCExMTJj
7 | uVfTHWus+4Tr1RErtuZivSpURdHJ6qmeN1RYFdaHM3z6BCmcnQpLKHcohyAQeS0Z
8 | 1MD48xKxAgMBAAECggEBAJezZM2pEmB3zjjdhIA2G7y9J8D67L8l4QQYyFYaqPuF
9 | Hw/DTPmKqVeqplUmgZsTX94bR5uavbmTPpeh/xgySlSUfLrFF7hwl8D0Jck0UjxT
10 | aEVPXtbx3rEXbAxH3ImvicfSBVhPZpMdX7VxmptBJMtrIe1ZzjMn8O57e1Oe4PqI
11 | yfBRGBTcInjeSuq6kaxXdxtg2Et3Su0hvjK//3kOIW7nOzLdIZBbaia1dtfHEWjo
12 | MhXpDl1HqHRdljhPl/KZuzyZnPfVEHNoyIa3vScnFaTOhiSIku49VPSm4oxH0Qo4
13 | g6Cm7nbhlCCwc6NwC/75MaAC/KJaKJpznBq9AA8sMLkCgYEA4mEdzUXHcDTIGvQ5
14 | nexk6mrR7S8stwuyyQMvSXUIxYmqXpy1z2RYeSoY8nBgdAoBSO8P2h8fXj0wmhuo
15 | 9lWyW/hPi/ONPLMNYDaH4h3fxgJuNBndEFHIR+iNIq+KouXiCgC60lE7XtrEVpeb
16 | 9VRkzjoSCBBv0L2vhLezT0LUS+cCgYEA1oBb60xuOBeMCyeQiAIoQPGEnvtkE7VB
17 | PY8BED4dAsPhMat3pRFr7mk3ck7drC+jY1402sZeQqW2VNdQKLEI6tndm3eEWvic
18 | IPOCdbkgoZLkZW0i0h2JrTBFYy/jyKyZrMl6/QV50G2DYO/G0FO4lBfxKhfuTqp6
19 | OnLAQ7EUGacCgYEAihmMwKkM3ZqVaDwM2hZYCdlYb0UUFiaAzreupTVMQJWW5Vjc
20 | YMRqZKAVz/BWJvPjjMap+Pp7fFX/zEOLc5sbz5dPj6ToSFtCkasygfKPjI/3Arm0
21 | bjw13ggz8TD9dhqfJlMDpUIA4gC7PcgHUEZHqLcsQNcmH0VYSbJ3JKc0M4kCgYAq
22 | ZEPGRNyjiUPMEI2n04VREGo9YUFuA6xZFiIHq77gBQZEYrbKkJ7cBz9GAAAfP2rz
23 | AHNBqWKHmWhnbAYThKlWgKgjSYOG1wtEF9v4mBWy2Oz6fo8bJ2tGJvwPli9WQYY9
24 | d7QuvR5N6tbEGZ8ZHPKlkfW/c+tM8LQnSPZmamCmkQKBgEOotUgfvuKkm80ljtQv
25 | N0MXZHMwbZbj46dMZJm5ROY3MB6rPCKBQanY7ix8xjRL5y2q9QZnlf+4LE7PztDc
26 | 7VKawWFRZ4vuhCSqJboTyxdcr2sPm34cJPJ/GqXCkY+HhZxSGxqgc9ow/ZLrricV
27 | KRwq4lanD3QZVXACnczruku8
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US893/key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQD4+U4r8rNRa+kU
3 | 9glkB+JcAiX79tfNlMMyAsdCpqbFyuwul1EWsuP6CQUdF5eJ8tg5IlmLmsD+D+Ww
4 | KSt4qiBG2IhX8pfVLCQEFpxDGaz798hMKU4FnEiK0Vetcg79kXIDSJ1MbxbKZPir
5 | Z5FMLicEL/IzVNKFQxf6pE6MK5nXDS2IvEGR7D+BabuhwYhMD8rto0FcZuNBi15M
6 | 4e3waVM7w/lP2pn9wufc37GdJbZ1Ta6S+dGUfAA0Sv9mR+iaUm9cvIdvrHYKutO0
7 | NlJdq+2cv3zSppzE2QhGlr4kfGa6gBl/fuTPsn5WxrdCHrLRuA5BqhO2SA4voTar
8 | v3sKh3Y1AgMBAAECggEBAKn0fSFQ9omRMTXG0hg/rYyDRuydzyid8TU1YlIkMtn4
9 | MIuJbagiC6/F8oCudxqK9IDj6t56kF2d+nvrTqp677eM3l2y02SIUjmcOaUwZL5H
10 | oaoj1AfObFKensxefM8pNvv42K+xcYxNqtZOx4eKRcX8+MeDkoW3jCnjeV8D8Gs0
11 | UflcoJvyFIghnDJsu5xEUAgZ6NxQAmJTSKOFZlEzvYkhFONpXVgcNVCrSsFGHtNi
12 | /rXtC46HG+N5K+C9a3xm/5HNRpDbhrFlBHFv0/B22rTmh1a8paUPyIhuiM8td87/
13 | MJT1ojbDdbNkyKKz2P31q+PIeX3oSaO3l7dNLFfU1k0CgYEA/6gSs9Gxu/PDZrDV
14 | onjWXDmnRXoUxvte7GNFWEA5yrO8QfaOOPShQdGEbH7Gk/s0UXwS9LqqNr/R00sm
15 | /F6sXp+KlU6r4aQ73rXf8XaAPPVsHKVkCbMO8RQuX/v7iTW5B+yn7Ug3ZRUkxPV1
16 | UsP63CqUkTq/QQQ1MWLbo8RSNAcCgYEA+U7vF3eNDkjKxoSL7xzJDjjf13oxM/rV
17 | 1PqLN+bGwkgqVhJy3m0qhYIEXkPahlcXQ1J+3jQqY59rSbPPaCgn2RoZGmJ/4xJL
18 | IALrYVSciJHwoq4jdcFyBrchjut8DBQgth5QiufXUS57n7TMsfhPkuRsEGrH2NNz
19 | gjoMAgx1DOMCgYEAjiOPCmT60UnNCQomLOfMHoh7ZJhkduEJPJpQ0qkauIVHlNEU
20 | 77uq8GIhowS1OU9AHlHCZEhoHHp3mWc+LLAiW5WOQkb0L0bVdpReBuzgjYPR8PdP
21 | cEkadJTI19rMVdQFpM9B6h3tloiz4cGq0jJeBgyyfzBPZ0GEpYmWHi4nmf8CgYBj
22 | YL+VzyX/J60M7REKw6KxdKJltmOeoMJUH3sXUXqxPysBHGGFoGZuyaEMImgdXOH9
23 | CAlicdDj3UxbGL34eulHdUvEZLctwMEJhaBmL+Al4GbXsiqYagAWBTHvUpckCXHw
24 | pqzccgY2ah0FUIC4AI9Xso4RDT+UgtVsd88JkgWmmQKBgQD2twQm/mkTrH7fGNfF
25 | 2m4Aoy0/xKgZfwgLzOWxBNDJfijGDwGvKmtuvWdt7jIy2LZjNYODg7xKaq/Lvykv
26 | mbUkqKv8QiiMeo3oeOmGd1j5dbrwBT1+Az+om4AC70qrOUtS/mqXh+gDFj4yBarz
27 | fY4IpLimEkzfzPsr/IAQfVJbeQ==
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US894/README:
--------------------------------------------------------------------------------
1 | This entire directory of unit test code started from US901 @2003 on 11/14/2013. Changes
2 | were made to support the proxy function being tested instead of the EST server function.
3 |
4 | //These are the commands used to generate CSR file (req.p10).
5 | //The OpenSSL config file came from Max's EST prototype code
6 | openssl req -new -nodes -out test.req -keyout test.key -config demoClient/demostep2.req.cnf
7 | openssl req -in test.req -outform DER | openssl base64 -e > req.p10
8 |
9 |
--------------------------------------------------------------------------------
/test/UT/US894/explicit-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEIIiR4iQuNTXac9Dh/PPA6ga044RXGtCp/zFikYP1M5TJoAoGCCqGSM49
6 | AwEHoUQDQgAEdyEUg4Hz6GZBGLNhGT2iOQobs6pMBG9AIy1cAW9C0FPYqo99yH9b
7 | ZkjHu4DI0ZlRMvNmPkKJK9KfgHKVXxePWQ==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US894/implicit-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEIM0ngP8IEokavZkHp5sIGccWZdZHFQoEhNoaNcAQkMMUoAoGCCqGSM49
6 | AwEHoUQDQgAE/OlyeUkh/Xr2eetxEabbvyB4orIk69XBcXSzgXmaKOY8+M/TUYUS
7 | n8HXLhRe1opMGwO6CZG8x5kHr2fEfwz3XQ==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US894/req.p10:
--------------------------------------------------------------------------------
1 | MIIChjCCAW4CAQAwQTElMCMGA1UEAxMccmVxIGJ5IGNsaWVudCBpbiBkZW1vIHN0
2 | ZXAgMjEYMBYGA1UEBRMPUElEOldpZGdldCBTTjoyMIIBIjANBgkqhkiG9w0BAQEF
3 | AAOCAQ8AMIIBCgKCAQEA/6JUWpXXDwCkvWPDWO0yANDQzFMxroLEIh6/vdNwfRSG
4 | eNGC0efcL5L4NxHZOmO14yqMEMGpCyHz7Ob3hhNPu0K81gMUzRqzwmmJHXwRqobA
5 | i59OQEkHaPhI1T4RkVnSYZLOowSqonMZjWbT0iqZDY/RD8l3GjH3gEIBMQFv62NT
6 | 1CSu9dfHEg76+DnJAhdddUDJDXO3AWI5s7zsLlzBoPlgd4oK5K1wqEE2pqhnZxei
7 | c94WFqXQ1kyrW0POVlQ+32moWTQTFA7SQE2uEF+GBXsRPaEO+FLQjE8JHOewLf/T
8 | qX0ngywnvxKRpKguSBic31WVkswPs8E34pjjZAvdxQIDAQABoAAwDQYJKoZIhvcN
9 | AQEFBQADggEBAAZXVoorRxAvQPiMNDpRZHhiD5O2Yd7APBBznVgRll1HML5dpgnu
10 | XY7ZCYwQtxwNGYVtKJaZCiW7dWrZhvnF5ua3wUr9R2ZNoLwVR0Z9Y5wwn1cJrdSG
11 | cUuBN/0XBGI6g6fQlDDImQoPSF8gygcTCCHba7Uv0i8oiCiwf5UF+F3NYBoBL/PP
12 | lO2zBEYNQ65+W3YgfUyYP0Cr0NyXgkz3Qh2Xa2eRFeW56oejmcEaMjq6yx7WAC2X
13 | k3w1G6Le1UInzuenMScNgnt8FaI43eAILMdLQ/Ekxc30fjxA12RDh/YzDYiExFv0
14 | dPd4o5uPKt4jRitvGiAPm/OCdXiYAwqiu2w=
15 |
--------------------------------------------------------------------------------
/test/UT/US894/revoked-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEIAKkMGURZyfDKEQLSvEJpe+G/O0Hs79KH00fTbNPEnCwoAoGCCqGSM49
6 | AwEHoUQDQgAEqi1LO28fszlk/kFzVm+M+0ApIA2xUTwbza9QAbGpyS+2LKOz9tja
7 | bko36WBrJR1Jv/HoC6TBVoDsuFW2h8qbAw==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US894/runserver_BA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | # Starts EST server using HTTP Basic Authentication
4 |
5 | export EST_TRUSTED_CERTS=CA/trustedcerts.crt
6 | export EST_CACERTS_RESP=CA/estCA/cacert.crt
7 | export EST_OPENSSL_CACONFIG=CA/estExampleCA.cnf
8 |
9 | ../../example/proxy/estproxy -p 9232 -s 127.0.0.1 -l 8088 -c CA/estCA/private/estservercertandkey.pem -k CA/estCA/private/estservercertandkey.pem -r estrealm -v
10 |
--------------------------------------------------------------------------------
/test/UT/US894/runserver_DA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | # Starts EST server using HTTP Digest Authentication
4 |
5 | export EST_TRUSTED_CERTS=CA/trustedcerts.crt
6 | export EST_CACERTS_RESP=CA/estCA/cacert.crt
7 | export EST_OPENSSL_CACONFIG=CA/estExampleCA.cnf
8 |
9 | ../../example/proxy/estproxy -p 9232 -s 127.0.0.1 -l 8087 -h -c CA/estCA/private/estservercertandkey.pem -k CA/estCA/private/estservercertandkey.pem -r estrealm -v
10 |
--------------------------------------------------------------------------------
/test/UT/US894/runserver_NA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | # Starts EST server using no HTTP Authentication
4 |
5 | export EST_TRUSTED_CERTS=CA/trustedcerts.crt
6 | export EST_CACERTS_RESP=CA/estCA/cacert.crt
7 | export EST_OPENSSL_CACONFIG=CA/estExampleCA.cnf
8 |
9 | ../../example/proxy/estproxy -n -p 9232 -s 127.0.0.1 -l 8086 -c CA/estCA/private/estservercertandkey.pem -k CA/estCA/private/estservercertandkey.pem -r estrealm -v
10 |
--------------------------------------------------------------------------------
/test/UT/US894/runserver_RA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | #Regenerate the CRL to avoid the expired CRL error
4 | openssl ca -config CA/estExampleCA.cnf -gencrl -out CA/estCA/crl.pem
5 | cat CA/trustedcerts.crt CA/estCA/crl.pem > US901/trustedcertsandcrl.crt
6 |
7 | #Setup the trust anchor
8 | export EST_TRUSTED_CERTS=US901/trustedcertsandcrl.crt
9 | export EST_CACERTS_RESP=CA/estCA/cacert.crt
10 | export EST_OPENSSL_CACONFIG=CA/estExampleCA.cnf
11 |
12 | #Start the EST server
13 | ../../example/proxy/estproxy -n -p 9232 -s 127.0.0.1 -l 8089 -c CA/estCA/private/estservercertandkey.pem -k CA/estCA/private/estservercertandkey.pem -r estrealm -v
14 |
--------------------------------------------------------------------------------
/test/UT/US894/selfsigned-cert.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIB8DCCAZcCCQCqZkOstjte3TAJBgcqhkjOPQQBMIGAMQswCQYDVQQGEwJVUzEL
3 | MAkGA1UECAwCTkMxDDAKBgNVBAcMA1JUUDEPMA0GA1UECgwGVFJJQUQxMQwwCgYD
4 | VQQLDANDM00xGTAXBgNVBAMMEHNlbGYtc2lnbmVkLXRlc3QxHDAaBgkqhkiG9w0B
5 | CQEWDWMzbUBjaXNjby5jb20wHhcNMTMwNzAyMTgwMDU4WhcNMTgwNjA2MTgwMDU4
6 | WjCBgDELMAkGA1UEBhMCVVMxCzAJBgNVBAgMAk5DMQwwCgYDVQQHDANSVFAxDzAN
7 | BgNVBAoMBlRSSUFEMTEMMAoGA1UECwwDQzNNMRkwFwYDVQQDDBBzZWxmLXNpZ25l
8 | ZC10ZXN0MRwwGgYJKoZIhvcNAQkBFg1jM21AY2lzY28uY29tMFkwEwYHKoZIzj0C
9 | AQYIKoZIzj0DAQcDQgAEaR7/nJcnoHyQaqnuL67hE+H6tIS+zQJFObZxQfHhVSHd
10 | phvBZ7O81GdxtSSGgS8V3scxmhPg2lXP7pSG1yCZ4zAJBgcqhkjOPQQBA0gAMEUC
11 | IBYS+3boEF/T89SeveaRfwRVDwprBlykXSr4IAS+uFAgAiEA6actPPK5gDPLNlV5
12 | g5iBnCWmmzz0V0xvz1Q7VeTZR+s=
13 | -----END CERTIFICATE-----
14 |
--------------------------------------------------------------------------------
/test/UT/US894/selfsigned-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEILhNarJh/OVv6qAyIDx4KZ6FqLW8JDoO8dU+Y5XHNByqoAoGCCqGSM49
6 | AwEHoUQDQgAEaR7/nJcnoHyQaqnuL67hE+H6tIS+zQJFObZxQfHhVSHdphvBZ7O8
7 | 1GdxtSSGgS8V3scxmhPg2lXP7pSG1yCZ4w==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US894/test5.crt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/cisco/libest/a464ba8a66717419ba71d289ef82c7b2315b2006/test/UT/US894/test5.crt
--------------------------------------------------------------------------------
/test/UT/US894/trustedcertsandcrl.crt:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIBUjCB+aADAgECAgkAxubsmRyvNhEwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxl
3 | c3RFeGFtcGxlQ0EwHhcNMTMwNzAyMTcxMDA2WhcNMTQwNzAyMTcxMDA2WjAXMRUw
4 | EwYDVQQDEwxlc3RFeGFtcGxlQ0EwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAART
5 | F/ACJ7HQ4iKfIzN4vFS0STyxIawbmydFhnl0BiAx6vtxIY5JZhCJmF8eC4beVeAd
6 | DyCS5Nh9JOAn0xdjsxE5oy8wLTAMBgNVHRMEBTADAQH/MB0GA1UdDgQWBBRm5VbK
7 | kysCC1ek1OLtX8qk7n2D+TAJBgcqhkjOPQQBA0kAMEYCIQCi7cXmFnJelU2/j8EC
8 | I49V/8trx2iCeWVDhNnfNE1CmAIhAIz8c4f1amN142O7v/ijeNZQHGVlrdWjnYke
9 | Be3Knc/0
10 | -----END CERTIFICATE-----
11 | -----BEGIN CERTIFICATE-----
12 | MIIBUzCB+6ADAgECAgkAq/owUrMi1hQwCQYHKoZIzj0EATAYMRYwFAYDVQQDEw1l
13 | c3RFWFRFUk5BTENBMB4XDTEzMDcwMjE3MTAwNloXDTE0MDcwMjE3MTAwNlowGDEW
14 | MBQGA1UEAxMNZXN0RVhURVJOQUxDQTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IA
15 | BOmZMEmno73PacY6cOzOkgiPiDNEp3EmSgvzp5NKqSxodKlbOOeBEE1KitpYtI+x
16 | iHGe+nLeCg15u4BMsnBgFRejLzAtMAwGA1UdEwQFMAMBAf8wHQYDVR0OBBYEFM+x
17 | kusOs4rcDulVUE5VraZFXFixMAkGByqGSM49BAEDSAAwRQIhAPSM7YaB6FpPM0R4
18 | c8keEoFx3t6wuTMLqCBnCoDHyTD2AiBUyWH4q7hmENnX6HwfysK9z/hyZwwOlhoM
19 | u/xCphvEGg==
20 | -----END CERTIFICATE-----
21 | -----BEGIN X509 CRL-----
22 | MIGwMFgwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxlc3RFeGFtcGxlQ0EXDTEzMTEw
23 | ODIwMjQ1M1oXDTEzMTIwODIwMjQ1M1owFDASAgEGFw0xMzA3MDIxNzM0MTVaMAkG
24 | ByqGSM49BAEDSQAwRgIhALv8G/m9af9bY0Nnjkk59osv3DYHlz/bBuI5aFGFrzrz
25 | AiEAmK4KDPwHKXrA+2XaV5SYHNX4LStMfpArzuguTgXFB7Q=
26 | -----END X509 CRL-----
27 |
--------------------------------------------------------------------------------
/test/UT/US897/runserver_BA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | # Starts EST server using HTTP Basic Authentication
4 | # This uses the cert store in the example/server directory
5 |
6 | export EST_TRUSTED_CERTS=../../example/server/trustedcerts.crt
7 | export EST_CACERTS_RESP=../../example/server/estCA/cacert.crt
8 | export EST_OPENSSL_CACONFIG=US901/estExampleCA.cnf
9 |
10 | ../../example/server/estserver -p 8897 -c ../../example/server/estCA/private/estservercertandkey.pem -k ../../example/server/estCA/private/estservercertandkey.pem -r estrealm -d 90 -v
11 |
--------------------------------------------------------------------------------
/test/UT/US898/cert-corrupt.pem:
--------------------------------------------------------------------------------
1 | subject=/CN=127.0.0.1
2 | issuer=/CN=estExampleCA
3 | -----BEGIN CERTIFICATE-----
4 | MIIBrTCCAVSgAwIBAgICAwUwCQYHKoZIzj0EATAXMRUwEwYDVQQDEwxlc3RFeGFt
5 | cGxlQ0EwHhcNMTMxMTAxMTcwMzQxWhcNMTQxMTAxMTcwMzQxWjAUMRIwEAYDVQQD
6 | EwkxMjcuMC4wLjEwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBANjAvYermMRe
7 | P5qVcrfXj1sUlhwohb4lnRP5yrgOJNGUJI806Wm/qDI2sDTnktQt0UI9R59Uj+np
8 | B3X3Iu7V1425sn4FijIp/OYuaaInwA9ESeZVhIBUTaAPGW7vBIradIxd73k7bLU2
9 | 8t42288C+Q1+K0ZRZKI5WDeQIaWJw8lrAgMBAAGjTTBLMAkGA1UdEwQCMAAwHQYD
10 | VR0OBBYEFEG/LQ/OQ/ottIDk5W0rpNv0DhHvMB8GA1UdIwQYMBaAFGblVsqTKwIL
11 | V6TU4u1fyqTufYP5MAkGByqGSM49BAEDSAAwRQIgJKqdR7X3ahOxhijZbCPyAsMI
12 | W4qFcjjl4ZYgY7wb6roCIQDgzLXmMraZ+eXd5hD19B6Akm0d1/DNYnDD6hSjoGZ9
13 | LA==
14 | -----END CERTIFICATE-----
15 |
16 |
--------------------------------------------------------------------------------
/test/UT/US898/key-corrupt.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXwIBAAKBgQDYwL2Hq5jEXj+alXK3149bFJYcKIW+JZ0T+cq4DiTRlCSPG+lp
3 | v6gyNrA055LULdFCPUefVI/p6Qd19yLu1deNubJ+BYoyKfzmLmmiJ8APREnmVYSA
4 | VE2gDxlu7wSK2nSMXe95O2y1NvLeNtvPAvkNfitGUWSiOVg3kCGlicPJawIDAQAB
5 | AoGBAMjVrcdro90vRtfA6c6WGOpXpM7qbSHGUEkWBlOMJ2lZTpabUib9wqbkLViX
6 | yWB4I5CwnxBulfoyRQt0thV+Zn3ifWuKp9bWDjpaGF9klhP3EXWoAsjjqyJ7e8kH
7 | /oT3Ldj8uL562iSIe6rHyxCPmtQXoc9yR3qfDEbzVeH9hXABAkEA8qlvqmDzxyBv
8 | I2Q0BJryFTClF+KHTWos2ppjV9CXKK5kef0Ala98K9QRgiyiAsXMIlwdZ3CJiFnG
9 | e9F7JDSuAQJBAOSqu1JLLtjh02a+1axWb73FpOVecuMFN8j3kHTjZHfe8aoZYMVW
10 | j/ZLHoLpymyZbjzxCrYngi1Da6r7cHuND2sCQQCpR1Wkj5m/sXqWP9Kh281AxvyE
11 | Wvx0HrtHjCf9HIA2WuGwz7PWt+JxWLEWFDi4om8zEPtaK4Fl4uq5eXrj2PQBAkEA
12 | rkEFGsM8Yf5FcSi//+KmqIEzFa+R8TqKtlUh+lFGwKpekvdf7UH31wKLr8ulfHi3
13 | ry0osoMNCp00MUoG/8ARHQJBAKDyBL4NYJ4YIqHuQZgIm/LB9MVEqoStzGFZYlJX
14 | Kb2BkotzR5Q/8eD0tvPa7S7XKc/FzMbvqn2JpJme3r3PCzs=
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US898/key-expired.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXQIBAAKBgQDjyjhl+5xGpiKxvhe8UAP+yHJzI8ZhAbYWKMFv+A6cxcIXN/a7
3 | dCdGFNGgEdp1PotlaE7+eworCSgFf6gPkgK7PG7bevV2oe5V5jxWcU6g6By+Vw6Z
4 | 9ZFQhSLutjUGtVKFi8N++wP6P94t1Bl2viJKbO+SAlkg5Lb96GG+cJYYJQIDAQAB
5 | AoGAMHc+OLSoM3/1scu4USDVOMh9UXIzK0Cp9V0Gi0REF6cb/MSzgn7cPFUBpQUn
6 | bfq4vgLLi+mx6CYylbjrkSSH39fcuZgnnrnmI+kQrJ0eVteeeUoNjUipTFjqfsFq
7 | DrXmWwyFM6HjvQAbs4eW1cUtBPqsG8aF0GSGsux1S6jKQgECQQD2BBdY9QKqTG3e
8 | 90X94l3ElLTjUbjE3iirWDKOhsrJVn+jNNJynzDqwstgKZ57Ww8NHAruXKw5xvaG
9 | hOD+1s21AkEA7QjGZKjv5oF801bg54ue0z2z0LrV6e7XUtYydold2a3efl0HK5TV
10 | mWPfh0fey+gXivyuPrJzmL30hkiFWwUmsQJBAPCsm/Ko7wyPbMU9/zka5UTVfgkM
11 | /8eI1xyZUgxhDa3ec0vE90SvO/nOy4ut658ePCFFF+SMwOhdHvwGrt5gYikCQFqm
12 | yHkmwtj9HKgWydzD4PIY3vQtADJ/TYo4sQP0dRgTDsx095ELUsVfFNW//s0s7hQR
13 | nvILfXok66ePhLDSv4ECQQCg6uy6bTnDK6Yx5aiDU6qTOUZ0+OmFXSKdNS92dDpT
14 | VVAbejboH0h6a+svElp/g8ySW4iHG3jdvRhHvyiw9y9T
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US898/tc11_key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PRIVATE KEY-----
2 | MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQDlmaPP6AOZyiS3
3 | eLsT9Qsu2sv8IXUYtkPxnTDgtxVa8L129OnXF72zL8IzERbg6at3kTkpgS/wUvzs
4 | /Cp+tXkgDdFG7lxzfS8ygqKH07Cbi5UFj4B408ovsu2Afxi6V0nd71KY8/a09QtZ
5 | VGneFZE9RjW9ders31fKfGQRF9NGdn1PlCs8FvK2xBmkGEIZTqHEneyfb3b8T6fF
6 | FA0490mpwd0UMvLLqo3/2n41otnDtjS4B4MQCghhhRIvHTMH86+bl6PR8Kw4spms
7 | a2hJAXNqr41TQ7kcFqhsAzftm6TQCGBv2N6V+8sde1HATWoo2XCrvoTm0ubu1Hnn
8 | cC4CGCQ7AgMBAAECggEALkBfAXjJkOdpshP+C60nTY8B3I6Y2huNYFS8DeiTwrgQ
9 | UrBPkubTbg9G3aappzErO3DjxPqjP5RYIx1BKjlAZzahW9qUgSdMpK4wM5BvWUYr
10 | BO29gZmYdzdiJKp1vsPqu2yEhQ9QOW/Lk3kvwm8xzNgh50KjyofLVZztQ4w7IUxH
11 | cw7n77mOsldbchvidLCK0obdPURnTLiwIupKzK9cyVdXKY9+8NPKsoHoTgtdLIA5
12 | g1lhmObqI+tkPEWyAH/+7XjJVDwcFlebfxLvCV/aVeucjc4DFaEK/aEilEoSgRh8
13 | RC0CIRS50Db/prM+vuq6iuDSpQrEez24TS+dHkyb0QKBgQD+f/RKVV7qJqBzNDSL
14 | e2seyxU3uDsPAadnhMbI8zVFSBLnTQll8ctxE5/wk05x9yyUVJb2QJGPHlyGlT4w
15 | JBLsWplc8ZEIdxnMkQFzC0JVbC9OQ3gO8CUQwwe3zxV+pOYcC0Tm7OXPltIfDUNr
16 | H9kIDIL/WHywcdEb205t3SpefQKBgQDm9ByLGmzTtIQHDars8G+t4rx8M4jcxMoN
17 | YHuKBbnETND2Ta8u6i8+7cSt0vgAy+3C6aWV4UL5HETkVz64Tv5xKabsnGZNznp6
18 | D8VdcUVFDVEUBmY7iJdpiQYLjTvnqwSIouoshMTzF5LSzB0WdNNkrIIdPCtKWDSD
19 | Vo5fgE3zFwKBgQCenQaWsWBHVK2ZP0ckS1Y2yeE+ad68+o3n8ZOmuBVSSZomeBfM
20 | ZochwVZkLJquYptxEstHTHSrmwOViTxJ6qG0lr6Qc6mtefUlTpZ1qeW8sYFGKLyR
21 | qs+fA74yq6i81m7nuYpG1gxgdaIdYjnLcPzljE60b+S+XyExWFwoErgOTQKBgHKB
22 | g4lgP6azMGaC20UAbI6NBSCbOHckxnzdYkLrVdBCubP0ji+3glcz8bixCa7zbN2f
23 | lC58cgUqg+mma/1bhQG8Qfu8C2j2P3k3SoZqu4ph8Nn51kQcE94KRsoBazsQan4I
24 | MAyEg1V3UZ9b/ev9XjXi5dvy0g/ZLagUiSBGb99fAoGBAKKgeoADSo7eWziRvyyB
25 | Gg4druQOU/XIV8vjeDj7Y4jUYX7eynrg3SZUeaXzHjRqcGJ9tpBgZhnkW2IyTmtD
26 | slMlw1RQjhWBYkxsxk42mSmhgd7uuNN1nP6yi91H8THzEp0Nn+vHoaffE0Fmad+O
27 | O6pvsg2m2TX2OaX7Gi7SbXaF
28 | -----END PRIVATE KEY-----
29 |
--------------------------------------------------------------------------------
/test/UT/US899/README:
--------------------------------------------------------------------------------
1 | The following commands were used to create the certs used for
2 | Testing the FQDN logic against certs containing a
3 | SubjectAlternativeName extension. Use these steps to
4 | create a cert that contains the extension.
5 | -------------------------------------------------------
6 | 1. Modify the very last line of ext.cnf
7 |
8 | 2. Generate a key pair using this command:
9 |
10 | openssl genrsa -out key_san_match.pem 1024
11 |
12 | 3. Generate the CSR using this command:
13 |
14 | openssl req -new -out csr.pem -outform PEM -key key_san_match.pem
15 |
16 | optional: view the request...
17 |
18 | openssl req -text -in csr.pem
19 |
20 | 4. Move up one directory and issue the cert using this openssl command:
21 |
22 | openssl ca -days 1500 -config CA/estExampleCA.cnf -in US899/csr.pem -out US899/cert_san_match.pem -extfile US899/ext.cnf
23 |
24 |
--------------------------------------------------------------------------------
/test/UT/US899/ext.cnf:
--------------------------------------------------------------------------------
1 | # Extensions to add to a certificate request
2 |
3 | basicConstraints = CA:FALSE
4 | keyUsage = nonRepudiation, digitalSignature, keyEncipherment
5 | subjectAltName = @alt_names
6 |
7 | [alt_names]
8 | DNS.1 = localhost.cisco.com
9 |
--------------------------------------------------------------------------------
/test/UT/US899/key_cn_match_wc.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXQIBAAKBgQC3COYY8jLXB0RL87GDAVn4vOwmcZKaU3DywL4q1iZvRRGG1+43
3 | ndMvIrKLm8WWADZzl8NM8noLLODM2fDsuht1jGaxhhD9vt9rZ5wOayoO0ICo3HrU
4 | 3255KKdgGhG3rkCUu7QR7Rtvp5GuM+y/nDDz3JEstD6Myb3x0ar2wh1qzQIDAQAB
5 | AoGBAKMOA2Wvxci3SYlb9AQf3RXwv3NT8+UVdmZbfE3O7vhrED0O+cGEENFJ2ML0
6 | JyYE1H1PcoWG8WApP65ebPmGpdQkSK+/AOp+FV2mM4/PYPoyLDTtt2qQuQj78jdv
7 | jE1ePtB5hQPgL8ab8sfLRJDubfruPXaqEvbJd/6aMfBE5oThAkEA6ckLfTsnOn3G
8 | JEAv8Ym4DG6q+VJFNLEFKDZuaxCnQP+hYdfhRNTRnIK/2GtWlP4/NSE6d/S9Vyzl
9 | E5B8nHEICQJBAMhtUZn3VgB8cmWBzn4c6f60+ukN9ic1toYw5t8jPo2IuivX7j+B
10 | jOvu22xqj1xCisliCtYi6b3TFKtnc3BmlaUCQQCFUk+pBRjj9GIQvkIZHo7FGD+M
11 | m2w4FlN4kUH68K5RFPb1k2U2GZ/H/5BkXSItKajmJaLwUbPAiSvCMn29wX/xAkBu
12 | 5C0V5sbqlfAlQWCiXhUJG9EHSPY8U3edX0kdhD6DyHZY86uZ72+sygcVQQ/4l8h6
13 | C4i7Wa3BnRv+icpREjERAkA0nZPIl+AvS+dHMYSa2Khysy/ikYpQZPqx85f/phD9
14 | cJVSBV6U8kR9FzEqHI4GmUMSwFex1JVxe8u29+piocA/
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US899/key_cn_mismatch.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXwIBAAKBgQDCTp8nFZFrK+eFqFDZWxqpIwqEHP3nJNwpGPJSVUMl5D7OAlGc
3 | kxlnicmTbdxdVq3LsH4seq2YF3+7GWJ9LvALz8EYb286/D08A5sYZl/cKvpyVL9f
4 | sHXdv4RAsTrFZS2E7kh2HUX6HeKyJV6qBowRZu9A8GgUCKh+YkrS6Yi9PQIDAQAB
5 | AoGBAJ8chpMYxEXAZAw88keqpMBP43Kf0wKOWoKE3RmynBPRPeSwXWgbxLfWSuyh
6 | D8yXCCY91nRR2QksZPovJUlhQErdac3DtD991ucZUoVuY9hJXnKJ2PKbyc5sWtwj
7 | 8u9Uj4XHukk+NPgAAyGfg3qREVFU+Cs8TBTqbQOofAjFvcM5AkEA8R31DCCsuan6
8 | 66/tJbbgwGmnhh7NmUSfGM/ayb0fPAhhvy+MdGXlV4BjBOswc++3FsUsdPdOhaDH
9 | Hvk9Vv/HqwJBAM5M/dRQXNl0yXlDFyzPTZK8sq/3b0YZ2bZHNt2j0ID69RGd6+//
10 | qMC4msUudWahMBrJpz3ImHMd724jTB8JBrcCQQDA5DNesWEc4wQuur4gNs5Uf/Ga
11 | FVhrbf9NLTOdwqOTNi1kcpiNodq4hqgwjipkBXjWSYUISbRSqM3DVKciy1sjAkEA
12 | kAU/ztCrgUP+wyELNMUkKqSBOkdK721sh8v/iYurK+AG5l2RMOMSNDisE6vzWcp9
13 | grX0gzVe+D6VwBX0NlZe0QJBAJbLKGVhThv0XxkocM8g2wnbE+z3VZrcY93WuLuD
14 | WxOe2/JDbI9KeXbUMdeTAq89nVicv3JiQaYD/ZzhPnQJvb4=
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US899/key_cn_mismatch_ip.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXAIBAAKBgQDY/pY1FTRIpWwhZY4Ln4VZLiT2myMq2dNxkrMkLR+u9bsbhOnt
3 | Qoq5R7yScGmTp8hQSwWJNmc0tCqX+2SeSRloDSE2NmNv39k59+na//6aqObVdbs/
4 | 5Tj1wib08fS2XJunSyx9NP/Ah63cLGq9IswTeP/1k8djEETgPywEkSab6wIDAQAB
5 | AoGAdbXNB6ij/xB1UryDTHzRWmo0tO29Kv6Uu9RHh0VPHZrBUBFO0Fy7YfyvJ4UB
6 | UI7AlAXOT/uKCsX9IQrHLzIaLB5SWb0tpCsCjB8++SQeIfKdpcNAyAhR3w9qQu2w
7 | c+d3AepsFeHwcSrqoeLAdg3/qfY5MMD6AFyI3+Xfjr27tUECQQD7GiRwUCJMd5dW
8 | P/kiU95MNuKg5N756QUSX3xRAjInQSJrZdILmQWITeUtdDROdtnmtOAHWK0YSVb9
9 | b0+N4DXhAkEA3Tohd8qbcvF63pcFMWW1D+gid1njEWQ1QktGQFvN1qP3OMAp+hxJ
10 | W3KCNWgdtIdJNnHGX4suStAlwZnDhxszSwJAZjkmTHLTA75L5dj1W3w5K13MtSN3
11 | gtXSMsCco335XPGvSXmSIRaSogLUIcUE5kyMONe5vEPlc9WnjFUcVe3JAQJAX7Vj
12 | f1DfObYxIxWRAJLw52XVa28u5npE9F5ekT9maQLc1OeGAZe1QOPkYzidCVoyGWTV
13 | nsY3C9TLUNu2FMB2ywJBAIEbxQzQ0C/FnZ6mt1IZOBvatdxbqhQQx8H2Lued1Jh5
14 | zkxLQBunmCxZkZgA4oGZnX3s2CjKJWHhib7zXnd0Ygc=
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US899/key_cn_mismatch_wc.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICXgIBAAKBgQDASv1LrLzNytJ9ugPUSV5o+0fd9QGc7GWCf1CfJD+fRJYU1Zxk
3 | qRlRgy9eYhGgRhQf6NnEYSNr/pZZo83lw4IIxD9VpFx6Y527WOx5YjHCTcQdQwW8
4 | CXihwSchQbcDghGWXbWXkqGT+BziXzPmAw4DnoRqctYAn3d1Lb7mhPsiswIDAQAB
5 | AoGBAIdbQflm2nAx+QEvU0q3apGTb/85W61OahX18JZVOcOuz8ZSpwfkUEIkic9y
6 | UN309m2PxtqJVhnK16K5v1Gg0YKJ4fbffodwQstLhinQwjNEb+rfXusmzKyjV6nu
7 | zZ1C6+b5wijQenybIxRIm4sWFGxm5k5IFQiPQXN2bzkAHVfBAkEA4Bm1ohumDcRd
8 | 2G/KuUdaiNdM6/GkviyXPDKa4Jvkh3pLcVzd2xa9Eb5Hc7tiwWdL8LPEbqssxHpu
9 | Eeics5NMCwJBANuqNF3aaufOKHtwsDg4c1G/mh3MweoNXAFNVCfW+a9E/0nKVqiV
10 | 194XfRaq24w8iN5vG4l8wPbKUHiVitZSBPkCQQDZ4IUT/7eZKPJorH+3VSUzZ8e0
11 | mXInJyk+cKDdgRNVmFPi+nwENv5JUusbHPMtv+U4Nz7ire/PcoyzQqmfebTzAkAi
12 | XMHMXLqUgH98r+ghI1OG2j41oy5CesyFt58OjGaKsHRvCqP7w1T9fRcoUJn/mgif
13 | Iypfm5BkCsoD0wDg/fuhAkEA3APsWcyaOdTIRdmjnJVZ5wlWKRgMnPT6kTwkRlY8
14 | Fl1c5uNZnxtpgmOd+10O5a/16aNoumsFfDP4z/anAeo0NA==
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/UT/US901/README:
--------------------------------------------------------------------------------
1 | //These are the commands used to generate CSR file (req.p10).
2 | //The OpenSSL config file came from Max's EST prototype code
3 | openssl req -new -nodes -out test.req -keyout test.key -config demoClient/demostep2.req.cnf
4 | openssl req -in test.req -outform DER | openssl base64 -e > req.p10
5 |
6 |
--------------------------------------------------------------------------------
/test/UT/US901/explicit-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEIIiR4iQuNTXac9Dh/PPA6ga044RXGtCp/zFikYP1M5TJoAoGCCqGSM49
6 | AwEHoUQDQgAEdyEUg4Hz6GZBGLNhGT2iOQobs6pMBG9AIy1cAW9C0FPYqo99yH9b
7 | ZkjHu4DI0ZlRMvNmPkKJK9KfgHKVXxePWQ==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US901/implicit-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEIM0ngP8IEokavZkHp5sIGccWZdZHFQoEhNoaNcAQkMMUoAoGCCqGSM49
6 | AwEHoUQDQgAE/OlyeUkh/Xr2eetxEabbvyB4orIk69XBcXSzgXmaKOY8+M/TUYUS
7 | n8HXLhRe1opMGwO6CZG8x5kHr2fEfwz3XQ==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US901/req.p10:
--------------------------------------------------------------------------------
1 | MIIChjCCAW4CAQAwQTElMCMGA1UEAxMccmVxIGJ5IGNsaWVudCBpbiBkZW1vIHN0
2 | ZXAgMjEYMBYGA1UEBRMPUElEOldpZGdldCBTTjoyMIIBIjANBgkqhkiG9w0BAQEF
3 | AAOCAQ8AMIIBCgKCAQEA/6JUWpXXDwCkvWPDWO0yANDQzFMxroLEIh6/vdNwfRSG
4 | eNGC0efcL5L4NxHZOmO14yqMEMGpCyHz7Ob3hhNPu0K81gMUzRqzwmmJHXwRqobA
5 | i59OQEkHaPhI1T4RkVnSYZLOowSqonMZjWbT0iqZDY/RD8l3GjH3gEIBMQFv62NT
6 | 1CSu9dfHEg76+DnJAhdddUDJDXO3AWI5s7zsLlzBoPlgd4oK5K1wqEE2pqhnZxei
7 | c94WFqXQ1kyrW0POVlQ+32moWTQTFA7SQE2uEF+GBXsRPaEO+FLQjE8JHOewLf/T
8 | qX0ngywnvxKRpKguSBic31WVkswPs8E34pjjZAvdxQIDAQABoAAwDQYJKoZIhvcN
9 | AQEFBQADggEBAAZXVoorRxAvQPiMNDpRZHhiD5O2Yd7APBBznVgRll1HML5dpgnu
10 | XY7ZCYwQtxwNGYVtKJaZCiW7dWrZhvnF5ua3wUr9R2ZNoLwVR0Z9Y5wwn1cJrdSG
11 | cUuBN/0XBGI6g6fQlDDImQoPSF8gygcTCCHba7Uv0i8oiCiwf5UF+F3NYBoBL/PP
12 | lO2zBEYNQ65+W3YgfUyYP0Cr0NyXgkz3Qh2Xa2eRFeW56oejmcEaMjq6yx7WAC2X
13 | k3w1G6Le1UInzuenMScNgnt8FaI43eAILMdLQ/Ekxc30fjxA12RDh/YzDYiExFv0
14 | dPd4o5uPKt4jRitvGiAPm/OCdXiYAwqiu2w=
15 |
--------------------------------------------------------------------------------
/test/UT/US901/runserver_BA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | # Starts EST server using HTTP Basic Authentication
4 |
5 | export EST_TRUSTED_CERTS=CA/trustedcerts.crt
6 | export EST_CACERTS_RESP=CA/estCA/cacert.crt
7 | export EST_OPENSSL_CACONFIG=CA/estExampleCA.cnf
8 |
9 | ../../example/server/estserver -p 8088 -c CA/estCA/private/estservercertandkey.pem -k CA/estCA/private/estservercertandkey.pem -r estrealm -d 60 -v
10 |
--------------------------------------------------------------------------------
/test/UT/US901/runserver_DA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | # Starts EST server using HTTP Basic Authentication
4 |
5 | export EST_TRUSTED_CERTS=CA/trustedcerts.crt
6 | export EST_CACERTS_RESP=CA/estCA/cacert.crt
7 | export EST_OPENSSL_CACONFIG=CA/estExampleCA.cnf
8 |
9 | ../../example/server/estserver -p 8087 -h -c CA/estCA/private/estservercertandkey.pem -k CA/estCA/private/estservercertandkey.pem -r estrealm -d 60 -v
10 |
--------------------------------------------------------------------------------
/test/UT/US901/runserver_NA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | # Starts EST server using no HTTP Authentication
4 |
5 | export EST_TRUSTED_CERTS=CA/trustedcerts.crt
6 | export EST_CACERTS_RESP=CA/estCA/cacert.crt
7 | export EST_OPENSSL_CACONFIG=CA/estExampleCA.cnf
8 |
9 | ../../example/server/estserver -n -p 8086 -c CA/estCA/private/estservercertandkey.pem -k CA/estCA/private/estservercertandkey.pem -r estrealm -d 60 -v
10 |
--------------------------------------------------------------------------------
/test/UT/US901/runserver_RA.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | #Regenerate the CRL to avoid the expired CRL error
4 | openssl ca -config CA/estExampleCA.cnf -gencrl -out CA/estCA/crl.pem
5 | cat CA/trustedcerts.crt CA/estCA/crl.pem > US901/trustedcertsandcrl.crt
6 |
7 | #Setup the trust anchor
8 | export EST_TRUSTED_CERTS=US901/trustedcertsandcrl.crt
9 | export EST_CACERTS_RESP=CA/estCA/cacert.crt
10 | export EST_OPENSSL_CACONFIG=CA/estExampleCA.cnf
11 |
12 | #Start the EST server
13 | ../../example/server/estserver -n -l -p 8089 -c CA/estCA/private/estservercertandkey.pem -k CA/estCA/private/estservercertandkey.pem -r estrealm -d 60 -v
14 |
--------------------------------------------------------------------------------
/test/UT/US901/selfsigned-cert.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN CERTIFICATE-----
2 | MIIB8DCCAZcCCQCqZkOstjte3TAJBgcqhkjOPQQBMIGAMQswCQYDVQQGEwJVUzEL
3 | MAkGA1UECAwCTkMxDDAKBgNVBAcMA1JUUDEPMA0GA1UECgwGVFJJQUQxMQwwCgYD
4 | VQQLDANDM00xGTAXBgNVBAMMEHNlbGYtc2lnbmVkLXRlc3QxHDAaBgkqhkiG9w0B
5 | CQEWDWMzbUBjaXNjby5jb20wHhcNMTMwNzAyMTgwMDU4WhcNMTgwNjA2MTgwMDU4
6 | WjCBgDELMAkGA1UEBhMCVVMxCzAJBgNVBAgMAk5DMQwwCgYDVQQHDANSVFAxDzAN
7 | BgNVBAoMBlRSSUFEMTEMMAoGA1UECwwDQzNNMRkwFwYDVQQDDBBzZWxmLXNpZ25l
8 | ZC10ZXN0MRwwGgYJKoZIhvcNAQkBFg1jM21AY2lzY28uY29tMFkwEwYHKoZIzj0C
9 | AQYIKoZIzj0DAQcDQgAEaR7/nJcnoHyQaqnuL67hE+H6tIS+zQJFObZxQfHhVSHd
10 | phvBZ7O81GdxtSSGgS8V3scxmhPg2lXP7pSG1yCZ4zAJBgcqhkjOPQQBA0gAMEUC
11 | IBYS+3boEF/T89SeveaRfwRVDwprBlykXSr4IAS+uFAgAiEA6actPPK5gDPLNlV5
12 | g5iBnCWmmzz0V0xvz1Q7VeTZR+s=
13 | -----END CERTIFICATE-----
14 |
--------------------------------------------------------------------------------
/test/UT/US901/selfsigned-key.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN EC PARAMETERS-----
2 | BggqhkjOPQMBBw==
3 | -----END EC PARAMETERS-----
4 | -----BEGIN EC PRIVATE KEY-----
5 | MHcCAQEEILhNarJh/OVv6qAyIDx4KZ6FqLW8JDoO8dU+Y5XHNByqoAoGCCqGSM49
6 | AwEHoUQDQgAEaR7/nJcnoHyQaqnuL67hE+H6tIS+zQJFObZxQfHhVSHdphvBZ7O8
7 | 1GdxtSSGgS8V3scxmhPg2lXP7pSG1yCZ4w==
8 | -----END EC PRIVATE KEY-----
9 |
--------------------------------------------------------------------------------
/test/UT/US903/key-RA.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN RSA PRIVATE KEY-----
2 | MIICWwIBAAKBgQDE2hWbD8y1W4h9NsBbaILQ/NQiywimNsR7MRDZs9ZgUyRanwxl
3 | zKjkOPg8dIEbIDPzp/Aaiz8mEXRcnhV41c7rcfgfPk4XOL/dutIapBcu6lR0nV5E
4 | uCtQ3KQahWm0RFVuc4VmMnD9lS04RB5/mTQKltn9N042WuK6WL8pzz5FAQIDAQAB
5 | AoGAIcqV/uI9b7xgt63YY1iTbDCaccaMm4u3OrZ3gAeA+1QKX4wB4s+5BkRJSIdv
6 | SirDAEaJzuSsWGqSoPt6EB4TwMXf0CWNIzTMLoUUCfEKHNANCxR2MlJqK/RvWvgt
7 | UIMLORKvLU58YWN6QUsDl65/nI8S40EpoqnuZNkUcifd64ECQQDkzxv4zIpqWGWL
8 | 7WhpTx9OxgU+XKsHaw+DsE2QWBj4o1yyGhDhdknuIdiWfNJYjd1bCUu06+nsMXGi
9 | 3/X2dJuZAkEA3D7EQMoIMDizF2WbIYWG7x45c6OlyFCEXxyu4pW1rxkO75t79oKl
10 | dM7q3iv4HcIYsUq/KVgQAOVJFiTaF4AVqQJAYUnW4PFHoXQ4qUim7rAf5cS5Eg0h
11 | A6R4Ekxyjn+HDqGXlnsS1msPgFuP1lz4q4KWrlDDiggNjMpxQQntcX+fcQJAa2Du
12 | refSNjBuoGmZSK6hKtPBju+qVA9tejGx0ibLfaLp9UgJGBZ6NIjtWYR2Y4vOHiIj
13 | MTUOGGGxUGqHKg34gQJAAUm9UoKZYdwdWHgsB2OOE4NUMh1r4aEsBgOy6n7I4p+P
14 | RxKYswC0aPmjY60lWU7TB/eGkeb9kVEiDv+IOcDCsQ==
15 | -----END RSA PRIVATE KEY-----
16 |
--------------------------------------------------------------------------------
/test/util/cdets.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * cdets.h - Public API for CDETS utilities
3 | *
4 | * October, 2013
5 | *
6 | * Copyright (c) 2013 by cisco Systems, Inc.
7 | * All rights reserved.
8 | *------------------------------------------------------------------
9 | */
10 |
11 | #ifndef CDETS_H
12 | #define CDETS_H
13 |
14 | void cdets_gen_ut_attachment(int total_tests, int tests_passed);
15 |
16 | #endif
17 |
18 |
--------------------------------------------------------------------------------
/test/util/curl_utils.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * curl_utils.h - Client HTTP operation utilities that utilize
3 | * libcurl.
4 | *
5 | * June, 2013
6 | *
7 | * Copyright (c) 2013 by cisco Systems, Inc.
8 | * All rights reserved.
9 | *------------------------------------------------------------------
10 | */
11 |
12 | #ifndef CURL_UTILS_H
13 | #define CURL_UTILS_H
14 |
15 | long curl_http_get(char *url, char *cacert, void *writefunc);
16 | long curl_http_post_srp(char *url, char *ct, char *data,
17 | char *uidpwd, char *cacert, long authmode,
18 | char *cipher_suite,
19 | char *srp_user, char *srp_pwd,
20 | void *writefunc,
21 | void *hdrfunc);
22 | long curl_http_post(char *url, char *ct, char *data,
23 | char *uidpwd, char *cacert, long authmode,
24 | char *cipher_suite,
25 | void *writefunc,
26 | void *hdrfunc);
27 | long curl_http_post_cert(char *url, char *ct, char *data,
28 | char *certfile, char *keyfile,
29 | char *cacert, void *writefunc);
30 | long curl_http_post_cert_write (char *url, char *ct, char *data,
31 | char *certfile, char *keyfile,
32 | char *cacert, void *writefunc,
33 | void *hdrfunc);
34 | long curl_http_post_certuid(char *url, char *ct, char *data,
35 | char *uidpwd,
36 | char *certfile, char *keyfile,
37 | char *cacert, void *writefunc);
38 | long curl_http_custom (char *url, char *cacert, char *myrequest,
39 | void *writefunc);
40 | #endif
41 |
42 |
--------------------------------------------------------------------------------
/test/util/ossl_srv.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * ossl_srv.h - Entry point definitions into the OpenSSL
3 | * interface for EST server operations.
4 | *
5 | * November, 2012
6 | *
7 | * Copyright (c) 2012 by cisco Systems, Inc.
8 | * All rights reserved.
9 | *------------------------------------------------------------------
10 | */
11 | #ifndef HEADER_OSSL_SRV_H
12 | #define HEADER_OSSL_SRV_H
13 |
14 | BIO * ossl_simple_enroll(unsigned char *p10buf, int p10len, char *configfile);
15 |
16 | #endif
17 |
--------------------------------------------------------------------------------
/test/util/parseTimers.py:
--------------------------------------------------------------------------------
1 | #!python
2 |
3 | import sys
4 | import re
5 | with open(sys.argv[1],'r') as logs:
6 | s = logs.read()
7 | matches = re.finditer(r'(?:\*\*\*EST \[TIMER\]\[)(\w+):(\d+)\]--> (.*) => (\d+\.\d+) seconds',s,)
8 | with open(sys.argv[2], 'w') as out_csv:
9 | out_csv.write("{},{},{},{}\n".format('Tag','Function','Line Number','Time(sec)'))
10 | for match in matches:
11 | (function_name, line_num, entry_tag, sec) = match.groups()
12 | out_csv.write("{},{},{},{}\n".format(entry_tag, function_name, line_num, sec))
--------------------------------------------------------------------------------
/test/util/test_utils.h:
--------------------------------------------------------------------------------
1 | /*------------------------------------------------------------------
2 | * test_utils.h - General purpose utilities used by all the test code
3 | *
4 | * June, 2013
5 | *
6 | * Copyright (c) 2013, 2016, 2018 by cisco Systems, Inc.
7 | * All rights reserved.
8 | *------------------------------------------------------------------
9 | */
10 |
11 | #ifndef TEST_UTILS_H
12 | #define TEST_UTILS_H
13 |
14 | #ifndef WIN32
15 | #define SLEEP(x) sleep(x)
16 | #else
17 | #define SLEEP(x) Sleep(x*1000)
18 | #endif
19 |
20 | #define LOG_FUNC_NM \
21 | do { \
22 | printf("\nEnter function %s\n", __FUNCTION__); \
23 | fflush(stdout); \
24 | } while (0)
25 |
26 | int read_binary_file(char *filename, unsigned char **contents);
27 | int write_binary_file(char *filename, unsigned char *contents, int len);
28 | int grep(char *filename, char *string);
29 | BIO *open_tcp_socket(char *ipaddr, char *port);
30 | BIO *open_tcp_socket_ipv4(char *ipaddr, char *port);
31 | EVP_PKEY *read_private_key(char *key_file);
32 | EVP_PKEY *read_protected_private_key(const char *key_file, pem_password_cb *cb);
33 | int get_subj_fld_from_cert(void *cert_csr, int cert_or_csr, char *name,
34 | int len);
35 | int coap_mode_supported(char *cert_key_file, char *trusted_certs_file,
36 | char *cacerts_file, int test_port);
37 | int kill_process (pid_t pid, int max_time_msec, int time_to_sleep_msec);
38 | int read_x509_cert_and_key_file(char *cert_file_path, char *pkey_file_path,
39 | X509 **cert, EVP_PKEY **pkey);
40 | #endif
41 |
42 |
43 |
--------------------------------------------------------------------------------
/version:
--------------------------------------------------------------------------------
1 | libest 3.2.0p
2 |
--------------------------------------------------------------------------------
/version.in:
--------------------------------------------------------------------------------
1 | @PACKAGE_STRING@
2 |
--------------------------------------------------------------------------------