michael@0: # This Source Code Form is subject to the terms of the Mozilla Public michael@0: # License, v. 2.0. If a copy of the MPL was not distributed with this michael@0: # file, You can obtain one at http://mozilla.org/MPL/2.0/. michael@0: michael@0: certDir=/iopr michael@0: caCertName=TestCA michael@0: caCrlName=TestCA michael@0: michael@0: #old values michael@0: userCertNames="TestUser510-rsa TestUser512-rsa" michael@0: userRevokedCertNames="TestUser510-rsa" michael@0: reverseRunCGIScript="/cgi-bin/client.cgi" michael@0: #reverseTestParam=NOREVALL michael@0: supportedTests="SslSingleHs SslSecondHs" michael@0: #supportedTests="SslSecondHs" michael@0: michael@0: michael@0: downloadFiles="TestUser510-rsa.p12 TestUser512-rsa.p12 ocspTrustedResponder-rsa.crt ocspTRTestUser514-rsa.crt ocspTRTestUser516-rsa.crt ocspRCATestUser518-rsa.crt ocspRCATestUser520-rsa.crt ocspDRTestUser522-rsa.crt ocspDRTestUser524-rsa.crt ocspTRUnknownIssuerCert-rsa.crt ocspRCAUnknownIssuerCert-rsa.crt ocspDRUnknownIssuerCert-rsa.crt" michael@0: # Keep a space at the end of michael@0: SslClntValidCertName="TestUser512-rsa" michael@0: SslClntRevokedCertName="TestUser510-rsa" michael@0: reverseRunCGIScript="/cgi-bin/client.cgi" michael@0: #reverseTestParam=NOREVALL michael@0: michael@0: supportedTests_new="SslSingleHs SslSecondHs OcspTrustedResponder OcspResponderCA OcspDesinatedResponder" michael@0: michael@0: # michael@0: # SslSingleHs: ssl single handshake with out client cert auth michael@0: SslSingleHsDescr="ssl with single handshake without client cert auth" michael@0: SslSingleHsPort=443 michael@0: SslSingleHsUrl=/iopr_test/test_pg.html michael@0: SslSingleHsParam=NOAUTH michael@0: michael@0: # michael@0: # SslSecondHs: ssl with secondary hs when accessing direcory michael@0: # that requires cert verification michael@0: SslSecondHsDescr="ssl with secondary hs when accessing direcory that requires cert verification" michael@0: SslSecondHsPort=443 michael@0: SslSecondHsUrl=/iopr_test_2hs/test_pg.html michael@0: SslSecondHsParam=NOCOV michael@0: michael@0: # michael@0: # OcspTrustedResponder - trusted responder key is used to sign OCSP response michael@0: # michael@0: OcspTrustedResponderDescr="trusted responder key is used to sign OCSP response" michael@0: OcspTrustedResponderProto=http michael@0: OcspTrustedResponderPort=2560 michael@0: OcspTrustedResponderResponderCert=ocspTrustedResponder-rsa michael@0: OcspTrustedResponderValidCertNames="ocspTRTestUser516-rsa" michael@0: OcspTrustedResponderRevokedCertNames="ocspTRTestUser514-rsa" michael@0: OcspTrustedResponderStatUnknownCertNames="ocspTRUnknownIssuerCert-rsa" michael@0: michael@0: # michael@0: # OcspResponderCA - CA key is used to sign OCSP response michael@0: # michael@0: OcspResponderCADescr="CA key is used to sign OCSP response" michael@0: OcspResponderCAValidCertNames="ocspRCATestUser518-rsa" michael@0: OcspResponderCARevokedCertNames="ocspRCATestUser520-rsa" michael@0: OcspResponderCAStatUnknownCertNames="ocspRCAUnknownIssuerCert-rsa" michael@0: michael@0: # michael@0: # OcspDesinatedResponder - CA Designated Responder key is used to sign OCSP response michael@0: # michael@0: OcspDesinatedResponderDescr="CA Designated Responder key is used to sign OCSP response" michael@0: OcspDesinatedResponderValidCertNames="ocspDRTestUser522-rsa" michael@0: OcspDesinatedResponderRevokedCertNames="ocspDRTestUser524-rsa" michael@0: OcspDesinatedResponderStatUnknownCertNames="ocspDRUnknownIssuerCert-rsa"