certbot

mirror of https://github.com/certbot/certbot.git synced 2026-06-05 23:04:39 -04:00

History

Adrien Ferrand 889aeb31df Validate OCSP responses in case an explicit responder is designated (#7054 ) * Validate OCSP response for responders that are not the certificate's issuer. * Improve OCSP tests using a issuer/responder pair for OCSP responses * Clean code * Update ocsp_test.py * Add various comments * Add several cases of ocsp responder. More factories for the resilience tests. * Update ocsp_test.py		2019-06-03 22:55:26 +03:00
..
sample-archive	Create symlinks at runtime and don't use relative paths (#3600 )	2016-10-10 13:17:49 -07:00
cert-5sans_512.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
cert-nosans_nistp256.pem	Unrevert #6000 and silence deprecation warnings (#6082 )	2018-06-08 00:45:23 +03:00
cert-san_512.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
cert_512.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
cert_512_bad.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
cert_2048.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
cert_fullchain_2048.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
cli.ini	s/letsencrypt/certbot	2016-04-13 16:03:59 -07:00
csr-6sans_512.conf	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
csr-6sans_512.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
csr-nonames_512.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
csr-nosans_512.conf	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
csr-nosans_512.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
csr-nosans_nistp256.pem	Unrevert #6000 and silence deprecation warnings (#6082 )	2018-06-08 00:45:23 +03:00
csr-san_512.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
csr_512.der	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
csr_512.pem	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
nistp256_key.pem	Unrevert #6000 and silence deprecation warnings (#6082 )	2018-06-08 00:45:23 +03:00
ocsp_certificate.pem	Validate OCSP responses in case an explicit responder is designated (#7054 )	2019-06-03 22:55:26 +03:00
ocsp_issuer_certificate.pem	Validate OCSP responses in case an explicit responder is designated (#7054 )	2019-06-03 22:55:26 +03:00
ocsp_responder_certificate.pem	Validate OCSP responses in case an explicit responder is designated (#7054 )	2019-06-03 22:55:26 +03:00
os-release	Tests	2016-07-30 11:49:04 +03:00
README	Organize + document `certbot/tests/testdata` directory (#4983 )	2017-08-23 10:32:27 -07:00
rsa256_key.pem	s/letsencrypt/certbot	2016-04-13 16:03:59 -07:00
rsa512_key.pem	s/letsencrypt/certbot	2016-04-13 16:03:59 -07:00
rsa2048_key.pem	[#3866 ]: "certbot certificates" checks validity with OpenSSL (#4155 )	2017-05-31 15:04:41 -07:00
sample-renewal-ancient.conf	Remove tls-sni related flags in cli. Add a deprecation warning instead. (#6853 )	2019-03-26 17:46:32 -07:00
sample-renewal.conf	Remove tls-sni related flags in cli. Add a deprecation warning instead. (#6853 )	2019-03-26 17:46:32 -07:00
webrootconftest.ini	s/letsencrypt/certbot	2016-04-13 16:03:59 -07:00

README

The following command has been used to generate test keys:

	for x in 256 512 2048; do openssl genrsa -out rsa${k}_key.pem $k; done

and for the CSR PEM (Certificate Signing Request):

		openssl req -new -out csr-Xsans_X.pem -key rsa512_key.pem [-config csr-Xsans_X.conf | -subj '/CN=example.com'] [-outform DER > csr_X.der]

and for the certificate:

  openssl req -new -out cert_X.pem -key rsaX_key.pem -subj '/CN=example.com' -x509 [-outform DER > cert_X.der]