History

Andrey Ermolov c88d12da96 New certs to be used for CRL tests. Added test for passing and failing connections based on CRL check outcomes		2023-09-26 21:15:57 +00:00
..
provider	New certs to be used for CRL tests. Added test for passing and failing connections based on CRL check outcomes	2023-09-26 21:15:57 +00:00
0b35a562.r0	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
0b35a562.r1	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
1.crl	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
1ab871c8.r0	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
2.crl	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
2f11f022.r0	security/advancedtls: fix CRL issuer comparison (#5130 )	2022-01-25 13:32:27 -08:00
3.crl	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
4.crl	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
5.crl	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
6.crl	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
7a1799af.r0	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
71eac5a2.r0	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
8828a7e6.r0	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
README.md	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
deee447d.r0	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
revokedInt.pem	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
revokedLeaf.pem	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00
unrevoked.pem	advancedtls: CRL checking for golang gRPC (#4489 )	2021-07-15 09:53:31 -07:00

README.md

CRL Test Data

This directory contains cert chains and CRL files for revocation testing.

To print the chain, use a command like,

openssl crl2pkcs7 -nocrl -certfile security/crl/x509/client/testdata/revokedLeaf.pem | openssl pkcs7 -print_certs -text -noout

The crl file symlinks are generated with openssl rehash

unrevoked.pem

A certificate chain with CRL files and unrevoked certs

Subject: C=US, ST=California, L=Mountain View, O=Google LLC, OU=Production, OU=campus-sln, CN=Root CA (2021-02-02T07:30:36-08:00)
- 1.crl

NOTE: 1.crl file is symlinked with 5.crl to simulate two issuers that hash to the same value to test that loading multiple files works.

Subject: C=US, ST=California, L=Mountain View, O=Google LLC, OU=Production, OU=campus-sln, CN=node CA (2021-02-02T07:30:36-08:00)
- 2.crl

revokedInt.pem

Certificate chain where the intermediate is revoked

Subject: C=US, ST=California, L=Mountain View, O=Google LLC, OU=Production, OU=campus-sln, CN=Root CA (2021-02-02T07:31:54-08:00)
- 3.crl
Subject: C=US, ST=California, L=Mountain View, O=Google LLC, OU=Production, OU=campus-sln, CN=node CA (2021-02-02T07:31:54-08:00)
- 4.crl

revokedLeaf.pem

Certificate chain where the leaf is revoked

Subject: C=US, ST=California, L=Mountain View, O=Google LLC, OU=Production, OU=campus-sln, CN=Root CA (2021-02-02T07:32:57-08:00)
- 5.crl
Subject: C=US, ST=California, L=Mountain View, O=Google LLC, OU=Production, OU=campus-sln, CN=node CA (2021-02-02T07:32:57-08:00)
- 6.crl