| Index: net/data/verify_certificate_chain_unittest/target-signed-by-512bit-rsa.pem
|
| diff --git a/net/data/verify_certificate_chain_unittest/target-signed-by-512bit-rsa.pem b/net/data/verify_certificate_chain_unittest/target-signed-by-512bit-rsa.pem
|
| new file mode 100644
|
| index 0000000000000000000000000000000000000000..8c8bd2428ef20f32ddf20ef6dab5c47f4bcbc90f
|
| --- /dev/null
|
| +++ b/net/data/verify_certificate_chain_unittest/target-signed-by-512bit-rsa.pem
|
| @@ -0,0 +1,248 @@
|
| +[Created by: generate-target-signed-by-512bit-rsa.py]
|
| +
|
| +Certificate chain with 1 intermediary and a trusted root. The target
|
| +certificate is signed using a weak RSA key (512-bit modulus), and so
|
| +verification is expected to fail.
|
| +
|
| +Certificate:
|
| + Data:
|
| + Version: 3 (0x2)
|
| + Serial Number: 1 (0x1)
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + Issuer: CN=Intermediary
|
| + Validity
|
| + Not Before: Jan 1 12:00:00 2015 GMT
|
| + Not After : Jan 1 12:00:00 2016 GMT
|
| + Subject: CN=Target
|
| + Subject Public Key Info:
|
| + Public Key Algorithm: rsaEncryption
|
| + Public-Key: (2048 bit)
|
| + Modulus:
|
| + 00:a0:09:f8:e1:95:28:53:9e:e3:c1:a5:c0:76:05:
|
| + 74:88:fb:fb:d0:c9:c2:3e:61:e3:a1:e3:b0:c8:81:
|
| + a3:d1:bf:0c:f4:d8:06:3d:8f:58:45:e1:f0:00:8e:
|
| + b1:8c:ab:bc:83:ae:d1:39:3d:6c:52:ef:76:f1:6f:
|
| + 93:b0:b2:26:b7:b4:ab:fd:25:44:94:85:4a:c1:ad:
|
| + 2a:6c:59:11:3c:33:63:39:e9:f1:c6:96:05:7a:a4:
|
| + 8b:3c:74:10:cb:ae:19:eb:cd:df:eb:b0:68:91:cd:
|
| + 5c:56:8d:41:d4:b4:4f:db:45:50:4d:01:01:10:09:
|
| + be:84:a3:3a:98:55:a2:a6:ea:6b:fc:c7:4f:ae:cd:
|
| + 31:60:80:2b:86:27:cf:64:f8:4f:35:32:83:02:57:
|
| + ab:85:9e:ae:e0:39:06:03:d8:8e:c5:6f:01:5f:f6:
|
| + 08:1f:ae:c9:a1:32:65:35:c5:9b:d7:2c:e1:6f:93:
|
| + 41:f7:40:ff:b1:36:08:5e:35:9e:42:2b:a4:d8:0a:
|
| + c2:ce:e4:94:cf:51:7c:76:18:d0:0a:4e:e8:37:b3:
|
| + 44:f4:0b:31:fa:49:96:94:c8:c0:ef:3a:10:ca:4d:
|
| + eb:ed:24:a7:d4:ec:bf:d5:5d:80:ed:d7:3a:b1:7c:
|
| + 3f:0f:b7:cb:48:59:73:fb:af:43:5e:3e:6b:e7:a5:
|
| + ed:01
|
| + Exponent: 65537 (0x10001)
|
| + X509v3 extensions:
|
| + X509v3 Subject Key Identifier:
|
| + 01:E0:D2:38:1C:28:DC:51:7E:F9:E6:25:7A:C5:47:ED:81:6C:FC:5F
|
| + X509v3 Authority Key Identifier:
|
| + keyid:B8:D0:79:3D:EA:8A:56:E5:90:68:D6:6C:E9:91:14:0C:AE:5A:48:10
|
| +
|
| + Authority Information Access:
|
| + CA Issuers - URI:http://url-for-aia/Intermediary.cer
|
| +
|
| + X509v3 CRL Distribution Points:
|
| +
|
| + Full Name:
|
| + URI:http://url-for-crl/Intermediary.crl
|
| +
|
| + X509v3 Key Usage: critical
|
| + Digital Signature, Key Encipherment
|
| + X509v3 Extended Key Usage:
|
| + TLS Web Server Authentication, TLS Web Client Authentication
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + be:ba:eb:82:1f:02:6b:d0:9e:c9:55:09:b1:e9:e1:82:8c:50:
|
| + 39:7e:f5:ff:0f:4f:ef:d8:7d:52:10:07:5e:c1:c4:0e:d5:94:
|
| + 67:d2:0e:2e:22:e6:5a:91:b5:f7:05:e3:a4:be:bc:6c:fb:38:
|
| + 2c:df:47:55:61:bc:4c:39:14:68
|
| +-----BEGIN CERTIFICATE-----
|
| +MIICyzCCAnWgAwIBAgIBATANBgkqhkiG9w0BAQsFADAXMRUwEwYDVQQDDAxJbnRl
|
| +cm1lZGlhcnkwHhcNMTUwMTAxMTIwMDAwWhcNMTYwMTAxMTIwMDAwWjARMQ8wDQYD
|
| +VQQDDAZUYXJnZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgCfjh
|
| +lShTnuPBpcB2BXSI+/vQycI+YeOh47DIgaPRvwz02AY9j1hF4fAAjrGMq7yDrtE5
|
| +PWxS73bxb5Owsia3tKv9JUSUhUrBrSpsWRE8M2M56fHGlgV6pIs8dBDLrhnrzd/r
|
| +sGiRzVxWjUHUtE/bRVBNAQEQCb6EozqYVaKm6mv8x0+uzTFggCuGJ89k+E81MoMC
|
| +V6uFnq7gOQYD2I7FbwFf9ggfrsmhMmU1xZvXLOFvk0H3QP+xNgheNZ5CK6TYCsLO
|
| +5JTPUXx2GNAKTug3s0T0CzH6SZaUyMDvOhDKTevtJKfU7L/VXYDt1zqxfD8Pt8tI
|
| +WXP7r0NePmvnpe0BAgMBAAGjgekwgeYwHQYDVR0OBBYEFAHg0jgcKNxRfvnmJXrF
|
| +R+2BbPxfMB8GA1UdIwQYMBaAFLjQeT3qilblkGjWbOmRFAyuWkgQMD8GCCsGAQUF
|
| +BwEBBDMwMTAvBggrBgEFBQcwAoYjaHR0cDovL3VybC1mb3ItYWlhL0ludGVybWVk
|
| +aWFyeS5jZXIwNAYDVR0fBC0wKzApoCegJYYjaHR0cDovL3VybC1mb3ItY3JsL0lu
|
| +dGVybWVkaWFyeS5jcmwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF
|
| +BwMBBggrBgEFBQcDAjANBgkqhkiG9w0BAQsFAANBAL6664IfAmvQnslVCbHp4YKM
|
| +UDl+9f8PT+/YfVIQB17BxA7VlGfSDi4i5lqRtfcF46S+vGz7OCzfR1VhvEw5FGg=
|
| +-----END CERTIFICATE-----
|
| +
|
| +Certificate:
|
| + Data:
|
| + Version: 3 (0x2)
|
| + Serial Number: 2 (0x2)
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + Issuer: CN=Root
|
| + Validity
|
| + Not Before: Jan 1 12:00:00 2015 GMT
|
| + Not After : Jan 1 12:00:00 2016 GMT
|
| + Subject: CN=Intermediary
|
| + Subject Public Key Info:
|
| + Public Key Algorithm: rsaEncryption
|
| + Public-Key: (512 bit)
|
| + Modulus:
|
| + 00:da:fa:51:64:db:d4:40:cf:aa:60:3f:0b:9a:0e:
|
| + 26:21:59:0e:f1:8b:e2:75:11:de:2d:1c:e5:dc:9b:
|
| + e2:16:ce:cf:50:a1:aa:c9:e0:19:9f:5c:e5:44:69:
|
| + 0d:f9:0c:d7:c5:1e:cf:11:65:77:cd:37:5f:d8:fe:
|
| + 6f:e0:99:b3:f7
|
| + Exponent: 65537 (0x10001)
|
| + X509v3 extensions:
|
| + X509v3 Subject Key Identifier:
|
| + B8:D0:79:3D:EA:8A:56:E5:90:68:D6:6C:E9:91:14:0C:AE:5A:48:10
|
| + X509v3 Authority Key Identifier:
|
| + keyid:68:06:12:0B:9D:1F:3A:7C:E5:87:20:3C:ED:A3:49:5D:3E:74:28:69
|
| +
|
| + Authority Information Access:
|
| + CA Issuers - URI:http://url-for-aia/Root.cer
|
| +
|
| + X509v3 CRL Distribution Points:
|
| +
|
| + Full Name:
|
| + URI:http://url-for-crl/Root.crl
|
| +
|
| + X509v3 Key Usage: critical
|
| + Certificate Sign, CRL Sign
|
| + X509v3 Basic Constraints: critical
|
| + CA:TRUE
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + 8c:35:af:f3:d9:62:41:91:93:ed:8b:f6:42:3e:94:80:cf:31:
|
| + ed:0f:a5:52:2e:51:3f:f3:3f:56:38:c5:f0:25:c5:f1:13:8c:
|
| + 6a:80:28:58:79:e1:eb:39:25:5a:af:31:07:24:da:8c:ae:17:
|
| + c7:56:fd:c1:d4:3a:2c:7e:7e:a4:ff:eb:66:74:96:66:e8:26:
|
| + 52:1d:c5:d6:0a:64:ea:cd:b7:df:b8:49:b1:c4:44:c6:d0:e3:
|
| + 94:0f:b2:b2:cb:75:5a:bf:48:c6:ad:82:46:74:a7:53:bd:55:
|
| + 00:67:6e:ba:2c:b8:15:43:30:64:d8:10:3a:67:b0:31:df:f6:
|
| + 9e:7e:7c:0b:63:d6:6d:b0:5d:9a:61:96:51:03:71:d3:fb:da:
|
| + 30:b8:d1:a6:8a:4a:a2:36:58:84:34:c0:30:5a:d8:51:30:d0:
|
| + 89:8c:1e:c3:45:32:85:17:ba:01:4d:60:04:91:23:ee:df:71:
|
| + 0d:82:90:67:2f:04:4e:e2:64:a9:48:55:03:e7:0b:a1:b4:e3:
|
| + e7:e9:54:3b:bc:83:f0:b3:bb:3f:1a:fd:03:95:28:0e:d2:3b:
|
| + 8b:62:fe:bb:b7:9a:1d:15:d3:96:47:be:c9:4e:21:77:63:60:
|
| + 3b:27:b3:3d:7e:8b:fd:3b:55:17:cf:8b:99:81:6d:92:66:5b:
|
| + 35:62:4a:96
|
| +-----BEGIN CERTIFICATE-----
|
| +MIICpTCCAY2gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAPMQ0wCwYDVQQDDARSb290
|
| +MB4XDTE1MDEwMTEyMDAwMFoXDTE2MDEwMTEyMDAwMFowFzEVMBMGA1UEAwwMSW50
|
| +ZXJtZWRpYXJ5MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANr6UWTb1EDPqmA/C5oO
|
| +JiFZDvGL4nUR3i0c5dyb4hbOz1ChqsngGZ9c5URpDfkM18UezxFld803X9j+b+CZ
|
| +s/cCAwEAAaOByzCByDAdBgNVHQ4EFgQUuNB5PeqKVuWQaNZs6ZEUDK5aSBAwHwYD
|
| +VR0jBBgwFoAUaAYSC50fOnzlhyA87aNJXT50KGkwNwYIKwYBBQUHAQEEKzApMCcG
|
| +CCsGAQUFBzAChhtodHRwOi8vdXJsLWZvci1haWEvUm9vdC5jZXIwLAYDVR0fBCUw
|
| +IzAhoB+gHYYbaHR0cDovL3VybC1mb3ItY3JsL1Jvb3QuY3JsMA4GA1UdDwEB/wQE
|
| +AwIBBjAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQCMNa/z2WJB
|
| +kZPti/ZCPpSAzzHtD6VSLlE/8z9WOMXwJcXxE4xqgChYeeHrOSVarzEHJNqMrhfH
|
| +Vv3B1Dosfn6k/+tmdJZm6CZSHcXWCmTqzbffuEmxxETG0OOUD7Kyy3Vav0jGrYJG
|
| +dKdTvVUAZ266LLgVQzBk2BA6Z7Ax3/aefnwLY9ZtsF2aYZZRA3HT+9owuNGmikqi
|
| +NliENMAwWthRMNCJjB7DRTKFF7oBTWAEkSPu33ENgpBnLwRO4mSpSFUD5wuhtOPn
|
| +6VQ7vIPws7s/Gv0DlSgO0juLYv67t5odFdOWR77JTiF3Y2A7J7M9fov9O1UXz4uZ
|
| +gW2SZls1YkqW
|
| +-----END CERTIFICATE-----
|
| +
|
| +Certificate:
|
| + Data:
|
| + Version: 3 (0x2)
|
| + Serial Number: 1 (0x1)
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + Issuer: CN=Root
|
| + Validity
|
| + Not Before: Jan 1 12:00:00 2015 GMT
|
| + Not After : Jan 1 12:00:00 2016 GMT
|
| + Subject: CN=Root
|
| + Subject Public Key Info:
|
| + Public Key Algorithm: rsaEncryption
|
| + Public-Key: (2048 bit)
|
| + Modulus:
|
| + 00:cc:43:57:ce:f5:69:b5:17:2d:24:1e:10:48:61:
|
| + 1e:6e:27:06:10:ae:6d:cd:70:97:4c:39:7b:0d:68:
|
| + 76:49:5b:2a:56:cf:24:d3:35:e4:f9:44:b0:60:c2:
|
| + db:ee:58:f0:2c:3f:25:53:95:bf:fc:3b:cf:1a:5c:
|
| + de:94:67:30:7f:6b:7b:c1:9c:d9:55:91:8b:34:57:
|
| + a7:4f:d0:d7:38:8c:e6:57:ae:f6:61:66:bb:fb:4e:
|
| + d3:b0:d0:c0:74:83:e3:43:7a:15:ab:29:fa:3f:65:
|
| + b5:58:3b:0b:76:cf:b9:85:d9:2a:5b:bf:81:4d:d7:
|
| + bb:72:cf:30:91:1a:0a:4f:6c:64:48:13:fe:cc:14:
|
| + 21:f0:74:b8:90:73:f7:d5:fe:5b:dd:b2:7a:71:1a:
|
| + e3:c3:22:5a:37:38:db:d0:39:62:b3:87:0e:7d:a8:
|
| + 93:68:82:01:29:36:eb:30:20:66:d9:2a:f8:e9:7d:
|
| + 53:ac:93:c1:68:c1:21:66:26:9e:4d:34:8a:14:c2:
|
| + 38:c0:6e:57:9a:c8:93:c1:7d:7d:d8:22:6e:bb:5e:
|
| + ff:dd:e0:af:e4:af:32:6d:f2:e7:57:d4:53:8d:ea:
|
| + f9:ca:72:d3:3a:4e:19:e3:b8:b7:4f:fb:d8:5b:41:
|
| + da:0e:17:59:e2:88:cd:c2:b7:6b:d4:64:50:f0:1e:
|
| + 36:9d
|
| + Exponent: 65537 (0x10001)
|
| + X509v3 extensions:
|
| + X509v3 Subject Key Identifier:
|
| + 68:06:12:0B:9D:1F:3A:7C:E5:87:20:3C:ED:A3:49:5D:3E:74:28:69
|
| + X509v3 Authority Key Identifier:
|
| + keyid:68:06:12:0B:9D:1F:3A:7C:E5:87:20:3C:ED:A3:49:5D:3E:74:28:69
|
| +
|
| + Authority Information Access:
|
| + CA Issuers - URI:http://url-for-aia/Root.cer
|
| +
|
| + X509v3 CRL Distribution Points:
|
| +
|
| + Full Name:
|
| + URI:http://url-for-crl/Root.crl
|
| +
|
| + X509v3 Key Usage: critical
|
| + Certificate Sign, CRL Sign
|
| + X509v3 Basic Constraints: critical
|
| + CA:TRUE
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + 2a:56:07:28:0a:b2:16:a5:3e:e3:cc:7e:10:47:8d:88:04:be:
|
| + 92:d6:ef:fa:c2:e3:5f:5f:57:3a:75:5a:8e:8e:62:e0:94:26:
|
| + 32:d2:ab:d3:d7:88:7e:d0:14:b1:1b:1a:5d:15:87:15:45:ae:
|
| + 47:50:0b:50:dd:52:55:03:0b:cb:91:13:b0:96:20:24:c5:aa:
|
| + 13:f5:4f:60:20:b6:46:6a:a6:cf:9d:4e:88:09:77:ad:4d:6f:
|
| + ea:d6:18:81:ac:7c:ad:59:9c:bb:f5:c5:62:e5:e4:b3:61:b2:
|
| + fb:f4:22:4e:38:a4:42:3a:e1:00:54:78:dd:24:90:20:47:d2:
|
| + 74:2b:89:44:64:04:02:3b:f9:8b:fa:35:aa:90:c1:73:82:95:
|
| + 94:fa:5f:85:e9:af:e1:3e:33:2b:1b:91:31:1d:94:ee:1c:0c:
|
| + e5:22:de:48:d4:2d:f7:3a:16:7e:f2:40:dc:ce:ec:3e:41:0d:
|
| + 12:3e:9c:ff:15:2b:9b:b3:80:87:02:50:76:ae:e1:05:dd:89:
|
| + 72:fc:49:e5:81:1f:91:cc:c8:27:b7:2c:b2:ef:71:a0:97:76:
|
| + 49:da:71:75:24:5e:45:2d:5b:2b:79:d2:b0:a3:b8:85:13:d5:
|
| + 68:d7:53:f0:d1:b8:87:d1:84:7c:9e:e1:18:23:f4:cc:2a:8d:
|
| + f3:93:51:5e
|
| +-----BEGIN TRUSTED_CERTIFICATE-----
|
| +MIIDZTCCAk2gAwIBAgIBATANBgkqhkiG9w0BAQsFADAPMQ0wCwYDVQQDDARSb290
|
| +MB4XDTE1MDEwMTEyMDAwMFoXDTE2MDEwMTEyMDAwMFowDzENMAsGA1UEAwwEUm9v
|
| +dDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMxDV871abUXLSQeEEhh
|
| +Hm4nBhCubc1wl0w5ew1odklbKlbPJNM15PlEsGDC2+5Y8Cw/JVOVv/w7zxpc3pRn
|
| +MH9re8Gc2VWRizRXp0/Q1ziM5leu9mFmu/tO07DQwHSD40N6Fasp+j9ltVg7C3bP
|
| +uYXZKlu/gU3Xu3LPMJEaCk9sZEgT/swUIfB0uJBz99X+W92yenEa48MiWjc429A5
|
| +YrOHDn2ok2iCASk26zAgZtkq+Ol9U6yTwWjBIWYmnk00ihTCOMBuV5rIk8F9fdgi
|
| +brte/93gr+SvMm3y51fUU43q+cpy0zpOGeO4t0/72FtB2g4XWeKIzcK3a9RkUPAe
|
| +Np0CAwEAAaOByzCByDAdBgNVHQ4EFgQUaAYSC50fOnzlhyA87aNJXT50KGkwHwYD
|
| +VR0jBBgwFoAUaAYSC50fOnzlhyA87aNJXT50KGkwNwYIKwYBBQUHAQEEKzApMCcG
|
| +CCsGAQUFBzAChhtodHRwOi8vdXJsLWZvci1haWEvUm9vdC5jZXIwLAYDVR0fBCUw
|
| +IzAhoB+gHYYbaHR0cDovL3VybC1mb3ItY3JsL1Jvb3QuY3JsMA4GA1UdDwEB/wQE
|
| +AwIBBjAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQAqVgcoCrIW
|
| +pT7jzH4QR42IBL6S1u/6wuNfX1c6dVqOjmLglCYy0qvT14h+0BSxGxpdFYcVRa5H
|
| +UAtQ3VJVAwvLkROwliAkxaoT9U9gILZGaqbPnU6ICXetTW/q1hiBrHytWZy79cVi
|
| +5eSzYbL79CJOOKRCOuEAVHjdJJAgR9J0K4lEZAQCO/mL+jWqkMFzgpWU+l+F6a/h
|
| +PjMrG5ExHZTuHAzlIt5I1C33OhZ+8kDczuw+QQ0SPpz/FSubs4CHAlB2ruEF3Yly
|
| +/EnlgR+RzMgntyyy73Ggl3ZJ2nF1JF5FLVsredKwo7iFE9Vo11Pw0biH0YR8nuEY
|
| +I/TMKo3zk1Fe
|
| +-----END TRUSTED_CERTIFICATE-----
|
| +
|
| +-----BEGIN TIME-----
|
| +MTUwMzAyMTIwMDAwWg==
|
| +-----END TIME-----
|
| +
|
| +-----BEGIN VERIFY_RESULT-----
|
| +RkFJTA==
|
| +-----END VERIFY_RESULT-----
|
|
|
Chromium Code Reviews
Issue 1414393008:
Add scripts to generate simple test data for certificate verification. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@key_usages