Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(423)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: net/data/parse_ocsp_unittest/ocsp_sign_bad_indirect.pem

Issue 1541213002: Adding OCSP Parser (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Removing verification. Created 4 years, 10 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« net/cert/internal/parse_ocsp.cc ('K') | « net/data/parse_ocsp_unittest/ocsp_extra_certs.pem ('k') | net/data/parse_ocsp_unittest/ocsp_sign_direct.pem » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: net/data/parse_ocsp_unittest/ocsp_sign_bad_indirect.pem
diff --git a/net/data/parse_ocsp_unittest/ocsp_sign_bad_indirect.pem b/net/data/parse_ocsp_unittest/ocsp_sign_bad_indirect.pem
new file mode 100644
index 0000000000000000000000000000000000000000..c3735734f9b8b8444533e1d892c91a83b2c9faaf
--- /dev/null
+++ b/net/data/parse_ocsp_unittest/ocsp_sign_bad_indirect.pem
@@ -0,0 +1,165 @@
+Signed through an intermediate without the correct key usage
+$ openssl asn1parse -i < [OCSP RESPONSE]
+ 0:d=0 hl=4 l= 755 cons: SEQUENCE
+ 4:d=1 hl=2 l= 1 prim: ENUMERATED :00
+ 7:d=1 hl=4 l= 748 cons: cont [ 0 ]
+ 11:d=2 hl=4 l= 744 cons: SEQUENCE
+ 15:d=3 hl=2 l= 9 prim: OBJECT :Basic OCSP Response
+ 26:d=3 hl=4 l= 729 prim: OCTET STRING
+ 0:d=0 hl=4 l= 725 cons: SEQUENCE
+ 4:d=1 hl=3 l= 140 cons: SEQUENCE
+ 7:d=2 hl=2 l= 3 cons: cont [ 0 ]
+ 9:d=3 hl=2 l= 1 prim: INTEGER :01
+ 12:d=2 hl=2 l= 35 cons: cont [ 1 ]
+ 14:d=3 hl=2 l= 33 cons: SEQUENCE
+ 16:d=4 hl=2 l= 31 cons: SET
+ 18:d=5 hl=2 l= 29 cons: SEQUENCE
+ 20:d=6 hl=2 l= 3 prim: OBJECT :commonName
+ 25:d=6 hl=2 l= 22 prim: PRINTABLESTRING :Test False OCSP Signer
+ 49:d=2 hl=2 l= 15 prim: GENERALIZEDTIME :20160219101141Z
+ 66:d=2 hl=2 l= 79 cons: SEQUENCE
+ 68:d=3 hl=2 l= 77 cons: SEQUENCE
+ 70:d=4 hl=2 l= 56 cons: SEQUENCE
+ 72:d=5 hl=2 l= 7 cons: SEQUENCE
+ 74:d=6 hl=2 l= 5 prim: OBJECT :sha1
+ 81:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:02FF75DA24DE8ADD150FAB689DCCE6E6636D0901
+ 103:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:1B04E2BF36FE4817B269A01CE3AF3DE29643E574
+ 125:d=5 hl=2 l= 1 prim: INTEGER :03
+ 128:d=4 hl=2 l= 0 prim: cont [ 0 ]
+ 130:d=4 hl=2 l= 15 prim: GENERALIZEDTIME :20160219101141Z
+ 147:d=1 hl=2 l= 13 cons: SEQUENCE
+ 149:d=2 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
+ 160:d=2 hl=2 l= 0 prim: NULL
+ 162:d=1 hl=3 l= 129 prim: BIT STRING
+ 294:d=1 hl=4 l= 431 cons: cont [ 0 ]
+ 298:d=2 hl=4 l= 427 cons: SEQUENCE
+ 302:d=3 hl=4 l= 423 cons: SEQUENCE
+ 306:d=4 hl=4 l= 272 cons: SEQUENCE
+ 310:d=5 hl=2 l= 3 cons: cont [ 0 ]
+ 312:d=6 hl=2 l= 1 prim: INTEGER :02
+ 315:d=5 hl=2 l= 1 prim: INTEGER :02
+ 318:d=5 hl=2 l= 13 cons: SEQUENCE
+ 320:d=6 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
+ 331:d=6 hl=2 l= 0 prim: NULL
+ 333:d=5 hl=2 l= 18 cons: SEQUENCE
+ 335:d=6 hl=2 l= 16 cons: SET
+ 337:d=7 hl=2 l= 14 cons: SEQUENCE
+ 339:d=8 hl=2 l= 3 prim: OBJECT :commonName
+ 344:d=8 hl=2 l= 7 prim: PRINTABLESTRING :Test CA
+ 353:d=5 hl=2 l= 30 cons: SEQUENCE
+ 355:d=6 hl=2 l= 13 prim: UTCTIME :160219151140Z
+ 370:d=6 hl=2 l= 13 prim: UTCTIME :260216151140Z
+ 385:d=5 hl=2 l= 33 cons: SEQUENCE
+ 387:d=6 hl=2 l= 31 cons: SET
+ 389:d=7 hl=2 l= 29 cons: SEQUENCE
+ 391:d=8 hl=2 l= 3 prim: OBJECT :commonName
+ 396:d=8 hl=2 l= 22 prim: PRINTABLESTRING :Test False OCSP Signer
+ 420:d=5 hl=3 l= 159 cons: SEQUENCE
+ 423:d=6 hl=2 l= 13 cons: SEQUENCE
+ 425:d=7 hl=2 l= 9 prim: OBJECT :rsaEncryption
+ 436:d=7 hl=2 l= 0 prim: NULL
+ 438:d=6 hl=3 l= 141 prim: BIT STRING
+ 582:d=4 hl=2 l= 13 cons: SEQUENCE
+ 584:d=5 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
+ 595:d=5 hl=2 l= 0 prim: NULL
+ 597:d=4 hl=3 l= 129 prim: BIT STRING
+-----BEGIN OCSP RESPONSE-----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+-----END OCSP RESPONSE-----
+
+$ openssl asn1parse -i < [CA CERTIFICATE]
+ 0:d=0 hl=4 l= 408 cons: SEQUENCE
+ 4:d=1 hl=4 l= 257 cons: SEQUENCE
+ 8:d=2 hl=2 l= 3 cons: cont [ 0 ]
+ 10:d=3 hl=2 l= 1 prim: INTEGER :02
+ 13:d=2 hl=2 l= 1 prim: INTEGER :00
+ 16:d=2 hl=2 l= 13 cons: SEQUENCE
+ 18:d=3 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
+ 29:d=3 hl=2 l= 0 prim: NULL
+ 31:d=2 hl=2 l= 18 cons: SEQUENCE
+ 33:d=3 hl=2 l= 16 cons: SET
+ 35:d=4 hl=2 l= 14 cons: SEQUENCE
+ 37:d=5 hl=2 l= 3 prim: OBJECT :commonName
+ 42:d=5 hl=2 l= 7 prim: PRINTABLESTRING :Test CA
+ 51:d=2 hl=2 l= 30 cons: SEQUENCE
+ 53:d=3 hl=2 l= 13 prim: UTCTIME :160219151140Z
+ 68:d=3 hl=2 l= 13 prim: UTCTIME :260216151140Z
+ 83:d=2 hl=2 l= 18 cons: SEQUENCE
+ 85:d=3 hl=2 l= 16 cons: SET
+ 87:d=4 hl=2 l= 14 cons: SEQUENCE
+ 89:d=5 hl=2 l= 3 prim: OBJECT :commonName
+ 94:d=5 hl=2 l= 7 prim: PRINTABLESTRING :Test CA
+ 103:d=2 hl=3 l= 159 cons: SEQUENCE
+ 106:d=3 hl=2 l= 13 cons: SEQUENCE
+ 108:d=4 hl=2 l= 9 prim: OBJECT :rsaEncryption
+ 119:d=4 hl=2 l= 0 prim: NULL
+ 121:d=3 hl=3 l= 141 prim: BIT STRING
+ 265:d=1 hl=2 l= 13 cons: SEQUENCE
+ 267:d=2 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
+ 278:d=2 hl=2 l= 0 prim: NULL
+ 280:d=1 hl=3 l= 129 prim: BIT STRING
+-----BEGIN CA CERTIFICATE-----
+MIIBmDCCAQGgAwIBAgIBADANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMB4XDTE
+2MDIxOTE1MTE0MFoXDTI2MDIxNjE1MTE0MFowEjEQMA4GA1UEAxMHVGVzdCBDQTCBnzANBgkqhk
+iG9w0BAQEFAAOBjQAwgYkCgYEAqp0WRQpjAe1WjVVhETlnlquvw55QDVxfiezobOwcpxc1prrZv
+SmLMcCGLLxE/61vdJcVbsKKuGaqbmJEWbxheiA3MNWEbF1+8XwMTy0kVOOrawv4Bvf9hYKtnIJF
+Wsye+yNcNK8TCQOIXlJBI1ZRZXbN9CFErLuSvM9EP9OyV90CAwEAATANBgkqhkiG9w0BAQUFAAO
+BgQB8waa9Yw5vVWxQPJlfGFg9c7s8evnQrrU79O1q3IsqfGl8pCCwGG7Qb/h7RRSH7yn4cpVaoa
+CBpV6Qb1nE7fuOu1j6qKr1GRiukksfZScVxDeOxJzdS3BAad0WzMGRfbXed6t4amlV1XoMzPBQw
+8XqZEkcfiv5nO9Rabm37uCgCg==
+-----END CA CERTIFICATE-----
+
+$ openssl asn1parse -i < [CERTIFICATE]
+ 0:d=0 hl=4 l= 410 cons: SEQUENCE
+ 4:d=1 hl=4 l= 259 cons: SEQUENCE
+ 8:d=2 hl=2 l= 3 cons: cont [ 0 ]
+ 10:d=3 hl=2 l= 1 prim: INTEGER :02
+ 13:d=2 hl=2 l= 1 prim: INTEGER :03
+ 16:d=2 hl=2 l= 13 cons: SEQUENCE
+ 18:d=3 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
+ 29:d=3 hl=2 l= 0 prim: NULL
+ 31:d=2 hl=2 l= 18 cons: SEQUENCE
+ 33:d=3 hl=2 l= 16 cons: SET
+ 35:d=4 hl=2 l= 14 cons: SEQUENCE
+ 37:d=5 hl=2 l= 3 prim: OBJECT :commonName
+ 42:d=5 hl=2 l= 7 prim: PRINTABLESTRING :Test CA
+ 51:d=2 hl=2 l= 30 cons: SEQUENCE
+ 53:d=3 hl=2 l= 13 prim: UTCTIME :160219151140Z
+ 68:d=3 hl=2 l= 13 prim: UTCTIME :260216151140Z
+ 83:d=2 hl=2 l= 20 cons: SEQUENCE
+ 85:d=3 hl=2 l= 18 cons: SET
+ 87:d=4 hl=2 l= 16 cons: SEQUENCE
+ 89:d=5 hl=2 l= 3 prim: OBJECT :commonName
+ 94:d=5 hl=2 l= 9 prim: PRINTABLESTRING :Test Cert
+ 105:d=2 hl=3 l= 159 cons: SEQUENCE
+ 108:d=3 hl=2 l= 13 cons: SEQUENCE
+ 110:d=4 hl=2 l= 9 prim: OBJECT :rsaEncryption
+ 121:d=4 hl=2 l= 0 prim: NULL
+ 123:d=3 hl=3 l= 141 prim: BIT STRING
+ 267:d=1 hl=2 l= 13 cons: SEQUENCE
+ 269:d=2 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption
+ 280:d=2 hl=2 l= 0 prim: NULL
+ 282:d=1 hl=3 l= 129 prim: BIT STRING
+-----BEGIN CERTIFICATE-----
+MIIBmjCCAQOgAwIBAgIBAzANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMB4XDTE
+2MDIxOTE1MTE0MFoXDTI2MDIxNjE1MTE0MFowFDESMBAGA1UEAxMJVGVzdCBDZXJ0MIGfMA0GCS
+qGSIb3DQEBAQUAA4GNADCBiQKBgQC43HTxzqrsQsyCBkYUZUYMR6MfeFEiIN5Fa+/ZwERplD+4w
+qYaiVEeCkuL8e7jqYMm2B2t4dsfSRDTCjFYM+o49ahDJcD4b0h56s0ovP6085QVMJXWLWQ5RLB+
+URvaToRfYyh7Q1F0KAj6DUIX6vGahHcNZbDpJkkd4ghWFxV8PQIDAQABMA0GCSqGSIb3DQEBBQU
+AA4GBADhaCL0Iy2bbEcb8h448n/PcWGLlhH0VRJIu7t/33uvtKXtNA45D9H5B4wMjAZLbplEWWD
+cSzTU8FNbIoilfgL+9Jw1dsHxJEooiZlf7V4Y2G12iDgcGD8S6bH5EtJmrPDZ06/8iIU9nsGCrO
+PKP4nsqbj6FOqG8TvNgm7Gk9CCY
+-----END CERTIFICATE-----
« net/cert/internal/parse_ocsp.cc ('K') | « net/data/parse_ocsp_unittest/ocsp_extra_certs.pem ('k') | net/data/parse_ocsp_unittest/ocsp_sign_direct.pem » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698