| Index: net/data/verify_certificate_chain_unittest/serverauth-ec-ku-keyencipherment.pem
|
| diff --git a/net/data/verify_certificate_chain_unittest/serverauth-ec-ku-keyencipherment.pem b/net/data/verify_certificate_chain_unittest/serverauth-ec-ku-keyencipherment.pem
|
| new file mode 100644
|
| index 0000000000000000000000000000000000000000..bb2ed6b6b8b2d34734361dc37b531fac5fba4e11
|
| --- /dev/null
|
| +++ b/net/data/verify_certificate_chain_unittest/serverauth-ec-ku-keyencipherment.pem
|
| @@ -0,0 +1,272 @@
|
| +[Created by: generate-serverauth-ec-ku-keyencipherment.py]
|
| +
|
| +Certificate chain with 1 intermediate, a trusted root, and a target
|
| +certificate for serverAuth that has only keyEncipherment.
|
| +
|
| +Certificate:
|
| + Data:
|
| + Version: 3 (0x2)
|
| + Serial Number: 1 (0x1)
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + Issuer: CN=Intermediate
|
| + Validity
|
| + Not Before: Jan 1 12:00:00 2015 GMT
|
| + Not After : Jan 1 12:00:00 2016 GMT
|
| + Subject: CN=Target
|
| + Subject Public Key Info:
|
| + Public Key Algorithm: id-ecPublicKey
|
| + Public-Key: (384 bit)
|
| + pub:
|
| + 04:47:90:06:cd:32:f1:43:64:8a:0f:a9:27:ad:8b:
|
| + 72:b6:90:bf:9c:56:4f:6f:ed:bc:5a:26:81:6e:ab:
|
| + 99:f5:97:cc:65:87:04:c5:9b:c7:ed:e7:d2:ec:80:
|
| + e5:8a:da:07:88:55:63:25:9b:5d:92:c4:db:2c:35:
|
| + f3:32:be:41:4e:6c:8e:53:54:eb:cf:a2:4a:0c:c4:
|
| + f8:2e:fd:0d:df:7b:13:07:28:c9:51:98:e7:22:29:
|
| + 0e:cc:29:3f:d8:8e:b2
|
| + ASN1 OID: secp384r1
|
| + X509v3 extensions:
|
| + X509v3 Subject Key Identifier:
|
| + 64:0B:31:C2:E5:A0:D5:B2:25:96:45:10:1E:24:89:74:CB:06:32:B9
|
| + X509v3 Authority Key Identifier:
|
| + keyid:78:6F:0B:E8:82:18:AD:46:6F:21:C7:AB:0A:A3:98:2A:16:B3:57:67
|
| +
|
| + Authority Information Access:
|
| + CA Issuers - URI:http://url-for-aia/Intermediate.cer
|
| +
|
| + X509v3 CRL Distribution Points:
|
| +
|
| + Full Name:
|
| + URI:http://url-for-crl/Intermediate.crl
|
| +
|
| + X509v3 Key Usage: critical
|
| + Key Encipherment
|
| + X509v3 Extended Key Usage:
|
| + TLS Web Server Authentication
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + f5:75:6a:2b:db:65:7f:aa:b0:9b:75:b5:c0:bd:36:9e:0a:77:
|
| + f7:ba:f3:a0:61:66:12:88:15:72:16:34:a4:dd:4e:bb:18:9a:
|
| + 4b:b7:50:9b:3d:1d:de:78:4d:48:08:bf:d9:a4:f2:17:fb:35:
|
| + f2:00:1c:f1:62:bf:29:75:4d:84:60:60:40:ef:97:a8:67:d5:
|
| + 23:fa:51:af:d3:bb:1a:84:a3:18:b2:0f:42:5e:18:98:b5:b4:
|
| + e1:68:b4:8b:32:df:bc:24:f5:b1:54:a8:a2:2e:6d:46:1d:f8:
|
| + 55:68:c5:cd:a1:ff:3d:1d:29:b3:26:61:db:24:08:8e:4e:50:
|
| + fe:63:36:c1:be:72:90:a8:0e:36:50:b1:38:f1:df:07:ec:b3:
|
| + 74:ff:9d:04:6e:f9:e2:bc:36:88:d5:7c:96:00:9a:e6:68:48:
|
| + ab:f9:2f:9c:83:45:18:21:62:2f:15:da:31:46:3a:85:11:32:
|
| + 72:32:21:46:c5:b2:df:cb:fc:85:73:21:7c:09:b8:78:f7:eb:
|
| + 8a:03:48:d0:ba:0d:a0:bc:da:a0:cf:cc:d9:4f:7e:5e:f0:a1:
|
| + a0:59:93:c5:22:34:95:7c:f4:79:29:be:6d:3d:03:ab:2e:90:
|
| + e8:a8:15:19:2c:d6:ba:61:6b:21:e1:16:62:1e:68:be:ed:f6:
|
| + bf:63:e9:0d
|
| +-----BEGIN CERTIFICATE-----
|
| +MIIC1TCCAb2gAwIBAgIBATANBgkqhkiG9w0BAQsFADAXMRUwEwYDVQQDDAxJbnRl
|
| +cm1lZGlhdGUwHhcNMTUwMTAxMTIwMDAwWhcNMTYwMTAxMTIwMDAwWjARMQ8wDQYD
|
| +VQQDDAZUYXJnZXQwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAARHkAbNMvFDZIoPqSet
|
| +i3K2kL+cVk9v7bxaJoFuq5n1l8xlhwTFm8ft59LsgOWK2geIVWMlm12SxNssNfMy
|
| +vkFObI5TVOvPokoMxPgu/Q3fexMHKMlRmOciKQ7MKT/YjrKjgd8wgdwwHQYDVR0O
|
| +BBYEFGQLMcLloNWyJZZFEB4kiXTLBjK5MB8GA1UdIwQYMBaAFHhvC+iCGK1GbyHH
|
| +qwqjmCoWs1dnMD8GCCsGAQUFBwEBBDMwMTAvBggrBgEFBQcwAoYjaHR0cDovL3Vy
|
| +bC1mb3ItYWlhL0ludGVybWVkaWF0ZS5jZXIwNAYDVR0fBC0wKzApoCegJYYjaHR0
|
| +cDovL3VybC1mb3ItY3JsL0ludGVybWVkaWF0ZS5jcmwwDgYDVR0PAQH/BAQDAgUg
|
| +MBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBCwUAA4IBAQD1dWor22V/
|
| +qrCbdbXAvTaeCnf3uvOgYWYSiBVyFjSk3U67GJpLt1CbPR3eeE1ICL/ZpPIX+zXy
|
| +ABzxYr8pdU2EYGBA75eoZ9Uj+lGv07sahKMYsg9CXhiYtbThaLSLMt+8JPWxVKii
|
| +Lm1GHfhVaMXNof89HSmzJmHbJAiOTlD+YzbBvnKQqA42ULE48d8H7LN0/50Ebvni
|
| +vDaI1XyWAJrmaEir+S+cg0UYIWIvFdoxRjqFETJyMiFGxbLfy/yFcyF8Cbh49+uK
|
| +A0jQug2gvNqgz8zZT35e8KGgWZPFIjSVfPR5Kb5tPQOrLpDoqBUZLNa6YWsh4RZi
|
| +Hmi+7fa/Y+kN
|
| +-----END CERTIFICATE-----
|
| +
|
| +Certificate:
|
| + Data:
|
| + Version: 3 (0x2)
|
| + Serial Number: 2 (0x2)
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + Issuer: CN=Root
|
| + Validity
|
| + Not Before: Jan 1 12:00:00 2015 GMT
|
| + Not After : Jan 1 12:00:00 2016 GMT
|
| + Subject: CN=Intermediate
|
| + Subject Public Key Info:
|
| + Public Key Algorithm: rsaEncryption
|
| + Public-Key: (2048 bit)
|
| + Modulus:
|
| + 00:fa:3b:f0:7b:b9:5d:60:5f:1c:c9:b0:87:60:45:
|
| + 41:1e:6c:d1:54:34:1c:ff:42:50:3f:a3:6f:38:f8:
|
| + 20:50:d5:81:a4:39:98:3c:72:e6:54:98:64:46:ad:
|
| + b0:cc:0d:a8:9e:be:eb:dd:04:cc:aa:1b:54:8b:c4:
|
| + 2b:c0:1f:4b:ed:59:d0:1d:0b:3d:9e:c1:dc:42:a5:
|
| + 11:97:12:2b:27:1a:93:1e:46:f2:9f:8e:62:ff:1e:
|
| + 5f:19:8a:39:f5:13:bc:ca:39:c3:22:d7:3a:8a:7b:
|
| + 39:f4:bf:af:36:90:e1:eb:be:09:f2:3c:00:b0:96:
|
| + 97:03:67:7f:c8:3d:db:0e:a8:e7:e6:06:04:98:b3:
|
| + 03:f5:c8:a4:c8:59:ed:59:3d:08:24:5d:27:54:2d:
|
| + db:ad:87:ff:c5:d0:ca:cc:d8:76:9a:0b:4a:43:61:
|
| + 29:6f:06:e5:3a:a5:2e:2a:bd:f6:67:c8:03:4b:96:
|
| + 2a:0f:c8:33:db:71:0d:ef:71:51:ba:7c:fa:4f:96:
|
| + 71:b9:0a:9d:f3:67:72:79:cf:7e:c6:89:b3:6b:b3:
|
| + 06:af:1a:bf:7d:9b:86:90:bf:f6:b7:45:9a:d6:3b:
|
| + 67:9b:82:38:15:f8:2b:9a:36:f6:56:66:1a:1e:7c:
|
| + c0:1d:f7:c1:6f:5d:17:4b:86:89:89:6e:5c:e5:51:
|
| + da:89
|
| + Exponent: 65537 (0x10001)
|
| + X509v3 extensions:
|
| + X509v3 Subject Key Identifier:
|
| + 78:6F:0B:E8:82:18:AD:46:6F:21:C7:AB:0A:A3:98:2A:16:B3:57:67
|
| + X509v3 Authority Key Identifier:
|
| + keyid:C7:D0:B8:B7:D7:AF:1F:1D:B1:72:B5:63:B4:2A:1A:1B:6F:06:04:42
|
| +
|
| + Authority Information Access:
|
| + CA Issuers - URI:http://url-for-aia/Root.cer
|
| +
|
| + X509v3 CRL Distribution Points:
|
| +
|
| + Full Name:
|
| + URI:http://url-for-crl/Root.crl
|
| +
|
| + X509v3 Key Usage: critical
|
| + Certificate Sign, CRL Sign
|
| + X509v3 Basic Constraints: critical
|
| + CA:TRUE
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + 91:35:d8:89:1a:7b:ca:4f:ad:9b:ad:f4:4f:c3:7a:b3:fa:43:
|
| + 73:f8:e0:55:ae:37:8b:0d:5a:8f:e9:a6:37:ea:d0:59:8b:b1:
|
| + fb:67:fe:4d:91:34:11:3f:54:a2:bd:8b:75:68:0c:0f:a7:db:
|
| + 3a:dd:dd:85:b2:4e:b9:e2:91:1f:f7:71:3d:be:84:4f:27:a6:
|
| + 82:d6:5d:c0:ef:e2:70:22:82:ac:73:21:2d:df:a5:30:2f:96:
|
| + 67:8a:38:15:5d:13:50:2f:f4:eb:55:79:18:88:8c:08:46:ce:
|
| + bd:17:1f:6c:5e:b6:1d:77:1b:11:e2:a5:1b:44:ae:e1:2b:8f:
|
| + 78:c6:b9:96:44:6a:eb:32:6d:a8:7a:1b:db:f8:a9:cc:00:f9:
|
| + 49:bc:31:84:a8:62:bf:d0:d7:e9:98:15:d5:1d:fa:b0:4a:4c:
|
| + 3b:0a:c3:ca:ff:eb:18:03:c7:a8:82:f7:1c:e5:c9:5d:21:8e:
|
| + b1:38:41:54:ed:26:0a:43:98:29:e0:2a:b4:61:56:8b:57:66:
|
| + 5e:e3:cb:22:ce:1e:b6:28:b3:2d:04:03:cf:ed:86:55:34:92:
|
| + 5e:d8:38:6f:ae:29:c3:d6:d2:a0:16:71:e7:82:b3:1c:18:67:
|
| + ef:4a:5e:65:1f:62:5c:73:a6:44:e3:96:b8:6f:af:1d:3e:7f:
|
| + 90:bc:e1:12
|
| +-----BEGIN CERTIFICATE-----
|
| +MIIDbTCCAlWgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAPMQ0wCwYDVQQDDARSb290
|
| +MB4XDTE1MDEwMTEyMDAwMFoXDTE2MDEwMTEyMDAwMFowFzEVMBMGA1UEAwwMSW50
|
| +ZXJtZWRpYXRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+jvwe7ld
|
| +YF8cybCHYEVBHmzRVDQc/0JQP6NvOPggUNWBpDmYPHLmVJhkRq2wzA2onr7r3QTM
|
| +qhtUi8QrwB9L7VnQHQs9nsHcQqURlxIrJxqTHkbyn45i/x5fGYo59RO8yjnDItc6
|
| +ins59L+vNpDh674J8jwAsJaXA2d/yD3bDqjn5gYEmLMD9cikyFntWT0IJF0nVC3b
|
| +rYf/xdDKzNh2mgtKQ2EpbwblOqUuKr32Z8gDS5YqD8gz23EN73FRunz6T5ZxuQqd
|
| +82dyec9+xomza7MGrxq/fZuGkL/2t0Wa1jtnm4I4Ffgrmjb2VmYaHnzAHffBb10X
|
| +S4aJiW5c5VHaiQIDAQABo4HLMIHIMB0GA1UdDgQWBBR4bwvoghitRm8hx6sKo5gq
|
| +FrNXZzAfBgNVHSMEGDAWgBTH0Li3168fHbFytWO0KhobbwYEQjA3BggrBgEFBQcB
|
| +AQQrMCkwJwYIKwYBBQUHMAKGG2h0dHA6Ly91cmwtZm9yLWFpYS9Sb290LmNlcjAs
|
| +BgNVHR8EJTAjMCGgH6AdhhtodHRwOi8vdXJsLWZvci1jcmwvUm9vdC5jcmwwDgYD
|
| +VR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEB
|
| +AJE12Ikae8pPrZut9E/DerP6Q3P44FWuN4sNWo/ppjfq0FmLsftn/k2RNBE/VKK9
|
| +i3VoDA+n2zrd3YWyTrnikR/3cT2+hE8npoLWXcDv4nAigqxzIS3fpTAvlmeKOBVd
|
| +E1Av9OtVeRiIjAhGzr0XH2xeth13GxHipRtEruErj3jGuZZEausybah6G9v4qcwA
|
| ++Um8MYSoYr/Q1+mYFdUd+rBKTDsKw8r/6xgDx6iC9xzlyV0hjrE4QVTtJgpDmCng
|
| +KrRhVotXZl7jyyLOHrYosy0EA8/thlU0kl7YOG+uKcPW0qAWceeCsxwYZ+9KXmUf
|
| +YlxzpkTjlrhvrx0+f5C84RI=
|
| +-----END CERTIFICATE-----
|
| +
|
| +Certificate:
|
| + Data:
|
| + Version: 3 (0x2)
|
| + Serial Number: 1 (0x1)
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + Issuer: CN=Root
|
| + Validity
|
| + Not Before: Jan 1 12:00:00 2015 GMT
|
| + Not After : Jan 1 12:00:00 2016 GMT
|
| + Subject: CN=Root
|
| + Subject Public Key Info:
|
| + Public Key Algorithm: rsaEncryption
|
| + Public-Key: (2048 bit)
|
| + Modulus:
|
| + 00:d6:29:78:82:63:a2:61:61:53:72:81:0c:e6:16:
|
| + 4c:54:d9:ff:5f:4f:30:a3:9f:b2:e1:62:ec:90:e1:
|
| + 80:3b:95:c4:17:95:ea:37:96:a7:6c:90:4d:ac:08:
|
| + 2e:e4:52:d7:7f:e3:eb:54:4b:32:95:8c:fd:de:f0:
|
| + 5b:8d:eb:1a:a3:8a:be:49:a1:8a:e6:9c:4b:b2:6b:
|
| + f7:0d:8a:3f:88:f9:02:cb:07:64:f1:2f:c3:a8:8e:
|
| + 06:a6:e7:bc:e9:20:0d:73:a3:95:05:a5:e6:5b:7e:
|
| + 07:b3:41:e1:0e:25:41:ba:39:ec:89:3a:1c:96:8b:
|
| + 9d:4d:b8:94:aa:b3:2f:91:ab:21:85:de:89:ee:f9:
|
| + 4e:18:88:41:69:93:ab:87:68:4f:77:2f:ac:33:f3:
|
| + 68:67:36:3c:f3:85:84:7f:77:1d:7a:2c:8a:a6:f2:
|
| + 4e:5f:52:9b:0b:35:8c:f6:46:61:68:3b:3a:2e:26:
|
| + 8a:d3:24:14:31:6f:f8:43:62:d2:5b:44:18:9d:47:
|
| + c7:57:b3:b5:da:b3:7d:b0:29:48:3b:e5:27:4c:52:
|
| + fa:1f:33:26:34:0b:5c:a8:6b:a5:02:eb:96:a8:f1:
|
| + c9:67:b4:0e:9d:12:6e:1c:44:57:cf:bf:75:ad:5e:
|
| + 54:d2:18:13:ea:ee:45:4d:94:3b:58:7d:20:9d:d2:
|
| + 40:85
|
| + Exponent: 65537 (0x10001)
|
| + X509v3 extensions:
|
| + X509v3 Subject Key Identifier:
|
| + C7:D0:B8:B7:D7:AF:1F:1D:B1:72:B5:63:B4:2A:1A:1B:6F:06:04:42
|
| + X509v3 Authority Key Identifier:
|
| + keyid:C7:D0:B8:B7:D7:AF:1F:1D:B1:72:B5:63:B4:2A:1A:1B:6F:06:04:42
|
| +
|
| + Authority Information Access:
|
| + CA Issuers - URI:http://url-for-aia/Root.cer
|
| +
|
| + X509v3 CRL Distribution Points:
|
| +
|
| + Full Name:
|
| + URI:http://url-for-crl/Root.crl
|
| +
|
| + X509v3 Key Usage: critical
|
| + Certificate Sign, CRL Sign
|
| + X509v3 Basic Constraints: critical
|
| + CA:TRUE
|
| + Signature Algorithm: sha256WithRSAEncryption
|
| + 7e:be:c2:56:a4:f6:74:c1:6a:97:11:04:6b:8a:50:c2:74:4b:
|
| + e0:01:6d:bf:72:c2:6e:4c:14:c1:15:ef:92:5f:44:4d:23:99:
|
| + ac:88:c2:c9:40:95:82:7d:b1:40:0d:4e:96:2e:1b:3f:5d:22:
|
| + 23:0e:92:e7:56:c0:33:21:f3:e2:39:41:b0:39:c6:27:29:1f:
|
| + 72:ac:58:73:0a:b2:13:bb:83:6a:6f:d9:4b:08:71:95:07:28:
|
| + 51:2a:a9:a5:d9:ab:02:78:62:fa:78:1a:1f:22:cb:80:5c:5e:
|
| + 79:81:fa:82:38:30:ba:eb:d3:a8:90:f4:47:aa:09:a8:c5:f8:
|
| + 20:58:fe:4d:82:47:2f:41:e6:7b:44:6b:5d:ee:ca:f9:2d:48:
|
| + 1f:76:e2:db:f0:3e:4d:de:85:d2:63:a3:e6:61:db:28:69:75:
|
| + 74:61:a0:ee:c3:e8:6f:c4:ce:a3:31:3c:48:9d:34:84:fe:83:
|
| + 7e:7d:be:2f:ca:bd:f8:f2:39:1c:0e:b2:3c:c2:4a:f2:3f:fe:
|
| + 63:2c:53:7b:1e:e7:64:e0:97:05:46:64:60:a0:35:54:5f:44:
|
| + 31:9a:a2:b7:72:7d:4a:90:90:9c:dd:d0:cd:89:b5:90:32:b2:
|
| + 2d:e2:4f:3c:b4:ae:46:00:96:72:6f:8e:bc:d3:59:e5:08:57:
|
| + b9:3f:f6:b2
|
| +-----BEGIN TRUST_ANCHOR_UNCONSTRAINED-----
|
| +MIIDZTCCAk2gAwIBAgIBATANBgkqhkiG9w0BAQsFADAPMQ0wCwYDVQQDDARSb290
|
| +MB4XDTE1MDEwMTEyMDAwMFoXDTE2MDEwMTEyMDAwMFowDzENMAsGA1UEAwwEUm9v
|
| +dDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANYpeIJjomFhU3KBDOYW
|
| +TFTZ/19PMKOfsuFi7JDhgDuVxBeV6jeWp2yQTawILuRS13/j61RLMpWM/d7wW43r
|
| +GqOKvkmhiuacS7Jr9w2KP4j5AssHZPEvw6iOBqbnvOkgDXOjlQWl5lt+B7NB4Q4l
|
| +Qbo57Ik6HJaLnU24lKqzL5GrIYXeie75ThiIQWmTq4doT3cvrDPzaGc2PPOFhH93
|
| +HXosiqbyTl9Smws1jPZGYWg7Oi4mitMkFDFv+ENi0ltEGJ1Hx1eztdqzfbApSDvl
|
| +J0xS+h8zJjQLXKhrpQLrlqjxyWe0Dp0SbhxEV8+/da1eVNIYE+ruRU2UO1h9IJ3S
|
| +QIUCAwEAAaOByzCByDAdBgNVHQ4EFgQUx9C4t9evHx2xcrVjtCoaG28GBEIwHwYD
|
| +VR0jBBgwFoAUx9C4t9evHx2xcrVjtCoaG28GBEIwNwYIKwYBBQUHAQEEKzApMCcG
|
| +CCsGAQUFBzAChhtodHRwOi8vdXJsLWZvci1haWEvUm9vdC5jZXIwLAYDVR0fBCUw
|
| +IzAhoB+gHYYbaHR0cDovL3VybC1mb3ItY3JsL1Jvb3QuY3JsMA4GA1UdDwEB/wQE
|
| +AwIBBjAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQB+vsJWpPZ0
|
| +wWqXEQRrilDCdEvgAW2/csJuTBTBFe+SX0RNI5msiMLJQJWCfbFADU6WLhs/XSIj
|
| +DpLnVsAzIfPiOUGwOcYnKR9yrFhzCrITu4Nqb9lLCHGVByhRKqml2asCeGL6eBof
|
| +IsuAXF55gfqCODC669OokPRHqgmoxfggWP5NgkcvQeZ7RGtd7sr5LUgfduLb8D5N
|
| +3oXSY6PmYdsoaXV0YaDuw+hvxM6jMTxInTSE/oN+fb4vyr348jkcDrI8wkryP/5j
|
| +LFN7Hudk4JcFRmRgoDVUX0QxmqK3cn1KkJCc3dDNibWQMrIt4k88tK5GAJZyb468
|
| +01nlCFe5P/ay
|
| +-----END TRUST_ANCHOR_UNCONSTRAINED-----
|
| +
|
| +150302120000Z
|
| +-----BEGIN TIME-----
|
| +MTUwMzAyMTIwMDAwWg==
|
| +-----END TIME-----
|
| +
|
| +SUCCESS
|
| +-----BEGIN VERIFY_RESULT-----
|
| +U1VDQ0VTUw==
|
| +-----END VERIFY_RESULT-----
|
| +
|
| +serverAuth
|
| +-----BEGIN KEY_PURPOSE-----
|
| +c2VydmVyQXV0aA==
|
| +-----END KEY_PURPOSE-----
|
|
|
Chromium Code Reviews
Issue 2813043002:
Add tests for keyUsage to the built-in cert verifier. (Closed)
