OLD | NEW |
1 This directory, tests/standalone/io/certificates, contains the | 1 This directory, tests/standalone/io/certificates, contains the |
2 X509 TLS certificates and private keys needed to run tests of Dart's | 2 X509 TLS certificates and private keys needed to run tests of Dart's |
3 secure networking code. The SecureSocket and SecureServer classes | 3 secure networking code. The SecureSocket and SecureServer classes |
4 are tested by making TLS (formerly called SSL) connections, secured | 4 are tested by making TLS (formerly called SSL) connections, secured |
5 by certificates from a self-signed test root authority. | 5 by certificates from a self-signed test root authority. |
6 | 6 |
7 The certificates are created by running ../create_sample_certificates.sh | 7 The certificates are created by running ../create_sample_certificates.sh |
8 in a bash or sh shell, with the openssl tools installed. Run the script | 8 in a bash or sh shell, with the openssl tools installed. Run the script |
9 twice to create the untrusted_* files. | 9 twice to create the untrusted_* files. |
10 | 10 |
| 11 PEM files: |
| 12 |
11 server_chain.pem: | 13 server_chain.pem: |
12 Contains the chain of certificates, from the self-signed | 14 Contains the chain of certificates, from the self-signed |
13 test certificate authority, through the intermediate CA, to the server | 15 test certificate authority, through the intermediate CA, to the server |
14 certificate, used on the server side of a test connection. | 16 certificate, used on the server side of a test connection. |
15 | 17 |
16 server_key.pem: | 18 server_key.pem: |
17 Contains the private key for the server certificate | 19 Contains the private key for the server certificate |
18 | 20 |
19 trusted_certs.pem: | 21 trusted_certs.pem: |
20 Contains the self-signed certificate of the test certificate authority. | 22 Contains the self-signed certificate of the test certificate authority. |
21 This certificate is set as "trusted" by the client side of the connection | 23 This certificate is set as "trusted" by the client side of the connection |
22 in its SecurityContext object, so that a verified TLS connection to the | 24 in its SecurityContext object, so that a verified TLS connection to the |
23 server can be made. | 25 server can be made. |
24 | 26 |
25 untrusted_server_chain.pem: | 27 untrusted_server_chain.pem: |
26 Contains a chain of certificates, from a different self-signed | 28 Contains a chain of certificates, from a different self-signed |
27 test certificate authority, through an intermediate CA, to a server | 29 test certificate authority, through an intermediate CA, to a server |
28 certificate, used on the server side of a test connection that is intended | 30 certificate, used on the server side of a test connection that is intended |
29 to fail because the client does not accept this certificate authority | 31 to fail because the client does not accept this certificate authority |
30 | 32 |
31 untrusted_server_key.pem: | 33 untrusted_server_key.pem: |
32 Contains the private key for the untrusted server certificate | 34 Contains the private key for the untrusted server certificate |
33 in untrusted_server_chain.pem | 35 in untrusted_server_chain.pem |
34 | 36 |
| 37 *_malformed.pem: |
| 38 Truncated PEM formatted certificates used to test error handling. |
| 39 |
| 40 PKCS12 files: |
| 41 |
| 42 server_key.12: |
| 43 Created with: |
| 44 $ openssl pkcs12 -export -inkey server_key.pem -out server_key.p12 -nocerts |
| 45 with password 'dartdart' |
| 46 |
| 47 server_chain.p12: |
| 48 Created with: |
| 49 $ openssl pkcs12 -export -in server_chain.pem -out server_chain.p12 -nokeys |
| 50 with password 'dartdart' |
| 51 |
| 52 client1_key.p12: |
| 53 Created with: |
| 54 $ openssl pkcs12 -export -inkey client1_key.pem -out client1_key.p12 -nocerts |
| 55 with password 'dartdart' |
| 56 |
| 57 client1.p12: |
| 58 Created with: |
| 59 $ openssl pkcs12 -export -in client1.pem -out client1.p12 -nokeys |
| 60 with password 'dartdart' |
| 61 |
| 62 trusted_certs.p12: |
| 63 Created with: |
| 64 $ openssl pkcs12 -export -in trusted_certs.pem -out trusted_certs.p12 -nokeys |
| 65 with password 'dartdart' |
| 66 |
| 67 client_authority.p12: |
| 68 Created with: |
| 69 $ openssl pkcs12 -export -in client_authority.pem -out client_authority.p12 -n
okeys |
| 70 with password 'dartdart' |
OLD | NEW |