From 542f4e5343b659495569cc3f78f77ea43a7064dc Mon Sep 17 00:00:00 2001 From: Paul Kehrer Date: Mon, 20 Apr 2015 14:57:32 -0500 Subject: IDNA and edge case SAN test vectors --- docs/development/test-vectors.rst | 8 ++++++++ .../x509/custom/san_idna_names.pem | 19 +++++++++++++++++++ .../x509/custom/san_rfc822_names.pem | 19 +++++++++++++++++++ .../x509/custom/san_uri_with_port.pem | 19 +++++++++++++++++++ 4 files changed, 65 insertions(+) create mode 100644 vectors/cryptography_vectors/x509/custom/san_idna_names.pem create mode 100644 vectors/cryptography_vectors/x509/custom/san_rfc822_names.pem create mode 100644 vectors/cryptography_vectors/x509/custom/san_uri_with_port.pem diff --git a/docs/development/test-vectors.rst b/docs/development/test-vectors.rst index 5353b1d2..f239db98 100644 --- a/docs/development/test-vectors.rst +++ b/docs/development/test-vectors.rst @@ -134,6 +134,14 @@ Custom X.509 Vectors subject alternative name extension with the ``registeredID`` general name. * ``all_key_usages.pem`` - An RSA 2048 bit self-signed certificate containing a key usage extension with all nine purposes set to true. +* ``san_idna_names.pem`` - An RSA 2048 bit self-signed certificate containing + a subject alternative name extension with ``rfc822Name``, ``dNSName``, and + ``uniformResourceIdentifier`` general names with IDNA (:rfc:`5895`) encoding. +* ``san_rfc822_names.pem`` - An RSA 2048 bit self-signed certificate containing + a subject alternative name extension with various ``rfc822Name`` values. +* ``san_uri_with_port.pem`` - An RSA 2048 bit self-signed certificate + containing a subject alternative name extension with various + ``uniformResourceIdentifier`` values. Custom X.509 Request Vectors ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ diff --git a/vectors/cryptography_vectors/x509/custom/san_idna_names.pem b/vectors/cryptography_vectors/x509/custom/san_idna_names.pem new file mode 100644 index 00000000..29034b85 --- /dev/null +++ b/vectors/cryptography_vectors/x509/custom/san_idna_names.pem @@ -0,0 +1,19 @@ +-----BEGIN CERTIFICATE----- +MIIDGDCCAgCgAwIBAgITBmkKn/MvOUXQk1/lN2si9LdhbTANBgkqhkiG9w0BAQUF +ADAPMQ0wCwYDVQQKDARQeUNBMB4XDTE1MDQyMDEwNTI0NloXDTE2MDQxOTEwNTI0 +NlowDzENMAsGA1UECgwEUHlDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC +ggEBALKXpkqcSgZeT5NpvKzMdbVy2zJZUaCqF6ghWHAEhebCl9FgS7CY/RcBjZj2 +lPS6Xep614zDQbV17q2WliZNJH7s3Q3tq7mhlYDsScd5cZPyM/p+0dCzVTeUp0NE +636TDzobcqRk6qWT53vBgvWvS3RF4UfanUB+l6KwsD0YXOX82TmHIzX2CQApD9m7 +rTPvB4L5hbqo2lwlHzRZM3Ejh0X5vazBKU4nADS/ePY7KQjGM/UUD37Sm7ApxQa3 +EaMx+QQvmWHC/J53wY1fOAAWj60baZ6+24/GZJzThXPdcFIB5Jh6+iFoPUr/iF8R +N54C7pZJ3G1wV37zp1Dv/32FPqkCAwEAAaNtMGswaQYDVR0RBGIwYIEeZW1haWxA +eG4tLTgwYXRvMmMuY3J5cHRvZ3JhcGh5ghh4bi0tODBhdG8yYy5jcnlwdG9ncmFw +aHmGJGh0dHBzOi8vd3d3LnhuLS04MGF0bzJjLmNyeXB0b2dyYXBoeTANBgkqhkiG +9w0BAQUFAAOCAQEAHovYDe4tb+/fHOtOgskw0iyXmVLFrZ6Y6Yng5PKFaWIKd9ew +dkErdNs9ZcQwo+SFdql2pxOCb6sHxo9XukVIHZZzr3so8so18c5f2TaZKzYL0bzv +znfINwkSbF80seuW/dsR+4wGvtEz5ox/96MkTsnP3tFjNS+2zF9ghtTg/XABtNBD +dCDIeD0fX4zEdMKb2tME1lsyra7fy6K1ZOYW+NefCABNer59SON+G8a0DzkaB6DO +jT8yAu85NvHtnHXYGl4nsE7/HndFZSU8GQHYsTAr1kJUfU3CZfoLSRvjlHnNFwWn +ddn9wNOpNYiILGwg1FFtGUuqi9z/rZb3zZlA3g== +-----END CERTIFICATE----- diff --git a/vectors/cryptography_vectors/x509/custom/san_rfc822_names.pem b/vectors/cryptography_vectors/x509/custom/san_rfc822_names.pem new file mode 100644 index 00000000..f07e6bab --- /dev/null +++ b/vectors/cryptography_vectors/x509/custom/san_rfc822_names.pem @@ -0,0 +1,19 @@ +-----BEGIN CERTIFICATE----- +MIIDDjCCAfagAwIBAgITBmkNiyOeghKn10MwmYC7ggPHDjANBgkqhkiG9w0BAQUF +ADAPMQ0wCwYDVQQKDARQeUNBMB4XDTE1MDQyMDEzMzgxOFoXDTE2MDQxOTEzMzgx +OFowDzENMAsGA1UECgwEUHlDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC +ggEBALKXpkqcSgZeT5NpvKzMdbVy2zJZUaCqF6ghWHAEhebCl9FgS7CY/RcBjZj2 +lPS6Xep614zDQbV17q2WliZNJH7s3Q3tq7mhlYDsScd5cZPyM/p+0dCzVTeUp0NE +636TDzobcqRk6qWT53vBgvWvS3RF4UfanUB+l6KwsD0YXOX82TmHIzX2CQApD9m7 +rTPvB4L5hbqo2lwlHzRZM3Ejh0X5vazBKU4nADS/ePY7KQjGM/UUD37Sm7ApxQa3 +EaMx+QQvmWHC/J53wY1fOAAWj60baZ6+24/GZJzThXPdcFIB5Jh6+iFoPUr/iF8R +N54C7pZJ3G1wV37zp1Dv/32FPqkCAwEAAaNjMGEwXwYDVR0RBFgwVoEFZW1haWyB +DWVtYWlsIDxlbWFpbD6BE2VtYWlsIDxlbWFpbEBlbWFpbD6BH2VtYWlsIDxlbWFp +bEB4bi0tZW1sLXZsYTRjLmNvbT6BCG15ZW1haWw6MA0GCSqGSIb3DQEBBQUAA4IB +AQCeV4X93YQMWRZpSUdxDSFUpu3GOXvJeDB+rUWnTEoRohjWU3QO8qOVqS+WqkP1 +EkYSTJc4bs50NCIK8QS1LJPt3jMfYDiVW0WP4sV57XzoLE6qtuaTKn0oAqz5Vn9c +5LG5MTPcYlDEuGQet4DvqtF+oAqjOeAm/rELW22K/JxAR6nZT3wnH5WyaK7nQItR +LFarWRraA8q8sIOVs1HR+vubEYk/5u6n3AXmzxZztWLp5Ow0/8x6XU/IwJlqg+rj +fDJeYJCW8p8G/lStcKSPsBvJC45fZFFI2oOUNs0J+FsKoCihzN3ShbirxMbMY+Hy +ZLL0a0t1JexOoqEvUORZXAFL +-----END CERTIFICATE----- diff --git a/vectors/cryptography_vectors/x509/custom/san_uri_with_port.pem b/vectors/cryptography_vectors/x509/custom/san_uri_with_port.pem new file mode 100644 index 00000000..ef5469c9 --- /dev/null +++ b/vectors/cryptography_vectors/x509/custom/san_uri_with_port.pem @@ -0,0 +1,19 @@ +-----BEGIN CERTIFICATE----- +MIIDCzCCAfOgAwIBAgITBmkNrLuW5WVCtzoww7S9wuDJgzANBgkqhkiG9w0BAQUF +ADAPMQ0wCwYDVQQKDARQeUNBMB4XDTE1MDQyMDEzNDU0NFoXDTE2MDQxOTEzNDU0 +NFowDzENMAsGA1UECgwEUHlDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC +ggEBALKXpkqcSgZeT5NpvKzMdbVy2zJZUaCqF6ghWHAEhebCl9FgS7CY/RcBjZj2 +lPS6Xep614zDQbV17q2WliZNJH7s3Q3tq7mhlYDsScd5cZPyM/p+0dCzVTeUp0NE +636TDzobcqRk6qWT53vBgvWvS3RF4UfanUB+l6KwsD0YXOX82TmHIzX2CQApD9m7 +rTPvB4L5hbqo2lwlHzRZM3Ejh0X5vazBKU4nADS/ePY7KQjGM/UUD37Sm7ApxQa3 +EaMx+QQvmWHC/J53wY1fOAAWj60baZ6+24/GZJzThXPdcFIB5Jh6+iFoPUr/iF8R +N54C7pZJ3G1wV37zp1Dv/32FPqkCAwEAAaNgMF4wXAYDVR0RBFUwU4YzZ29waGVy +Oi8veG4tLTgwYXRvMmMuY3J5cHRvZ3JhcGh5OjcwL3BhdGg/cT1zI2hlbGxvhhxo +dHRwOi8vc29tZXJlZ3VsYXJkb21haW4uY29tMA0GCSqGSIb3DQEBBQUAA4IBAQAx +iR2laJvCh4B6BQ8H7Fytcr8sXf3ih4aA6LQIYy/a2eNpIc58DJimg13rXo8YQ35Z +9Xh6nfhyg3CIrq63UMbIi7NAKzKJMhcMTvcfgXp2TIQWvpFAfothvHL+0cjiOF17 +hG+BwcV/MawDZbtJmFjA97XzPJkkgku0dggd91xIi4PEcNLvjCqb81QMExokfa9U +/LkSanGCZHMR0OkfsIFjsNCwj01wYUI0nVoMuLCELer+1rPP03lS2ibiQujZ6C1c +2PC3wZ9Ymy3ysfDzB9+9tgIhqDE6RZ+QWa/2m1Qf10LtAG1EEPA8aWgWU0zcYPEX +vpZ0upM8Tx81CkAGf/3m +-----END CERTIFICATE----- -- cgit v1.2.3