| ## This file contains a record of how some of the test data was |
| ## generated. The final build products are committed to the repository |
| ## as well to make sure that the test data is identical. You do not |
| ## need to use this makefile unless you're extending mbed TLS's tests. |
| |
| ## Many data files were generated prior to the existence of this |
| ## makefile, so the method of their generation was not recorded. |
| |
| ## Note that in addition to depending on the version of the data |
| ## generation tool, many of the build outputs are randomized, so |
| ## running this makefile twice would not produce the same results. |
| |
| ## Tools |
| OPENSSL ?= openssl |
| FAKETIME ?= faketime |
| |
| # Tools from Mbed TLS |
| # Mbed Crypto depends on Mbed TLS programs to generate its test certificates. |
| # These programs can be installed from Mbed TLS. |
| MBEDTLS_CERT_WRITE ?= mbedtls_cert_write |
| MBEDTLS_CERT_REQ ?= mbedtls_cert_req |
| |
| |
| ## Build the generated test data. Note that since the final outputs |
| ## are committed to the repository, this target should do nothing on a |
| ## fresh checkout. Furthermore, since the generation is randomized, |
| ## re-running the same targets may result in differing files. The goal |
| ## of this makefile is primarily to serve as a record of how the |
| ## targets were generated in the first place. |
| default: all_final |
| |
| all_intermediate := # temporary files |
| all_final := # files used by tests |
| |
| |
| |
| ################################################################ |
| #### Generate certificates from existing keys |
| ################################################################ |
| |
| test_ca_crt = test-ca.crt |
| test_ca_key_file_rsa = test-ca.key |
| test_ca_pwd_rsa = PolarSSLTest |
| test_ca_config_file = test-ca.opensslconf |
| |
| test-ca.req.sha256: $(test_ca_key_file_rsa) |
| $(MBEDTLS_CERT_REQ) output_file=$@ filename=$(test_ca_key_file_rsa) password=$(test_ca_pwd_rsa) subject_name="C=NL,O=PolarSSL,CN=PolarSSL Test CA" md=SHA256 |
| all_intermediate += test-ca.req.sha256 |
| |
| test-ca.crt: $(test_ca_key_file_rsa) test-ca.req.sha256 |
| $(MBEDTLS_CERT_WRITE) is_ca=1 serial=3 request_file=test-ca.req.sha256 selfsign=1 issuer_name="C=NL,O=PolarSSL,CN=PolarSSL Test CA" issuer_key=$(test_ca_key_file_rsa) issuer_pwd=$(test_ca_pwd_rsa) not_before=20190210144400 not_after=20290210144400 md=SHA1 version=3 output_file=$@ |
| all_final += test-ca.crt |
| |
| test-ca.crt.der: test-ca.crt |
| $(OPENSSL) x509 -inform PEM -in $< -outform DER -out $@ |
| all_final += test-ca.der |
| |
| test-ca-sha1.crt: $(test_ca_key_file_rsa) test-ca.req.sha256 |
| $(MBEDTLS_CERT_WRITE) is_ca=1 serial=3 request_file=test-ca.req.sha256 selfsign=1 issuer_name="C=NL,O=PolarSSL,CN=PolarSSL Test CA" issuer_key=$(test_ca_key_file_rsa) issuer_pwd=$(test_ca_pwd_rsa) not_before=20190210144400 not_after=20290210144400 md=SHA1 version=3 output_file=$@ |
| all_final += test-ca-sha1.crt |
| |
| test-ca-sha256.crt: $(test_ca_key_file_rsa) test-ca.req.sha256 |
| $(MBEDTLS_CERT_WRITE) is_ca=1 serial=3 request_file=test-ca.req.sha256 selfsign=1 issuer_name="C=NL,O=PolarSSL,CN=PolarSSL Test CA" issuer_key=$(test_ca_key_file_rsa) issuer_pwd=$(test_ca_pwd_rsa) not_before=20190210144400 not_after=20290210144400 md=SHA256 version=3 output_file=$@ |
| all_final += test-ca-sha256.crt |
| |
| cli_crt_key_file_rsa = cli-rsa.key |
| |
| cli-rsa.csr: $(cli_crt_key_file_rsa) |
| $(MBEDTLS_CERT_REQ) output_file=$@ filename=$< subject_name="C=NL,O=PolarSSL,CN=PolarSSL Client 2" md=SHA1 |
| all_intermediate += cli-rsa.csr |
| |
| cli-rsa-sha1.crt: cli-rsa.csr |
| $(MBEDTLS_CERT_WRITE) request_file=$< serial=4 issuer_crt=$(test_ca_crt) issuer_key=$(test_ca_key_file_rsa) issuer_pwd=$(test_ca_pwd_rsa) not_before=20190210144406 not_after=20290210144406 md=SHA1 version=3 output_file=$@ |
| |
| cli-rsa-sha256.crt: cli-rsa.csr |
| $(MBEDTLS_CERT_WRITE) request_file=$< serial=4 issuer_crt=$(test_ca_crt) issuer_key=$(test_ca_key_file_rsa) issuer_pwd=$(test_ca_pwd_rsa) not_before=20190210144406 not_after=20290210144406 md=SHA256 version=3 output_file=$@ |
| all_final += cli-rsa-sha256.crt |
| |
| test_ca_int_rsa1 = test-int-ca.crt |
| |
| rsa_pkcs1_2048_public.der: rsa_pkcs1_2048_public.pem |
| $(OPENSSL) rsa -RSAPublicKey_in -in $< -outform DER -RSAPublicKey_out -out $@ |
| all_final += rsa_pkcs1_2048_public.der |
| |
| rsa_pkcs8_2048_public.der: rsa_pkcs8_2048_public.pem |
| $(OPENSSL) rsa -pubin -in $< -outform DER -pubout -out $@ |
| all_final += rsa_pkcs8_2048_public.der |
| |
| ################################################################ |
| #### Generate various RSA keys |
| ################################################################ |
| |
| ### Password used for PKCS1-encoded encrypted RSA keys |
| keys_rsa_basic_pwd = testkey |
| |
| ### Password used for PKCS8-encoded encrypted RSA keys |
| keys_rsa_pkcs8_pwd = PolarSSLTest |
| |
| ### Basic 1024-, 2048- and 4096-bit unencrypted RSA keys from which |
| ### all other encrypted RSA keys are derived. |
| rsa_pkcs1_1024_clear.pem: |
| $(OPENSSL) genrsa -out $@ 1024 |
| all_final += rsa_pkcs1_1024_clear.pem |
| rsa_pkcs1_2048_clear.pem: |
| $(OPENSSL) genrsa -out $@ 2048 |
| all_final += rsa_pkcs1_2048_clear.pem |
| rsa_pkcs1_4096_clear.pem: |
| $(OPENSSL) genrsa -out $@ 4096 |
| all_final += rsa_pkcs1_4096_clear.pem |
| |
| ### |
| ### PKCS1-encoded, encrypted RSA keys |
| ### |
| |
| ### 1024-bit |
| rsa_pkcs1_1024_des.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) rsa -des -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_1024_des.pem |
| rsa_pkcs1_1024_3des.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) rsa -des3 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_1024_3des.pem |
| rsa_pkcs1_1024_aes128.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) rsa -aes128 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_1024_aes128.pem |
| rsa_pkcs1_1024_aes192.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) rsa -aes192 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_1024_aes192.pem |
| rsa_pkcs1_1024_aes256.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) rsa -aes256 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_1024_aes256.pem |
| keys_rsa_enc_basic_1024: rsa_pkcs1_1024_des.pem rsa_pkcs1_1024_3des.pem rsa_pkcs1_1024_aes128.pem rsa_pkcs1_1024_aes192.pem rsa_pkcs1_1024_aes256.pem |
| |
| # 2048-bit |
| rsa_pkcs1_2048_des.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) rsa -des -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_2048_des.pem |
| rsa_pkcs1_2048_3des.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) rsa -des3 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_2048_3des.pem |
| rsa_pkcs1_2048_aes128.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) rsa -aes128 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_2048_aes128.pem |
| rsa_pkcs1_2048_aes192.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) rsa -aes192 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_2048_aes192.pem |
| rsa_pkcs1_2048_aes256.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) rsa -aes256 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_2048_aes256.pem |
| keys_rsa_enc_basic_2048: rsa_pkcs1_2048_des.pem rsa_pkcs1_2048_3des.pem rsa_pkcs1_2048_aes128.pem rsa_pkcs1_2048_aes192.pem rsa_pkcs1_2048_aes256.pem |
| |
| # 4096-bit |
| rsa_pkcs1_4096_des.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) rsa -des -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_4096_des.pem |
| rsa_pkcs1_4096_3des.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) rsa -des3 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_4096_3des.pem |
| rsa_pkcs1_4096_aes128.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) rsa -aes128 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_4096_aes128.pem |
| rsa_pkcs1_4096_aes192.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) rsa -aes192 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_4096_aes192.pem |
| rsa_pkcs1_4096_aes256.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) rsa -aes256 -in $< -out $@ -passout "pass:$(keys_rsa_basic_pwd)" |
| all_final += rsa_pkcs1_4096_aes256.pem |
| keys_rsa_enc_basic_4096: rsa_pkcs1_4096_des.pem rsa_pkcs1_4096_3des.pem rsa_pkcs1_4096_aes128.pem rsa_pkcs1_4096_aes192.pem rsa_pkcs1_4096_aes256.pem |
| |
| ### |
| ### PKCS8-v1 encoded, encrypted RSA keys |
| ### |
| |
| ### 1024-bit |
| rsa_pkcs8_pbe_sha1_1024_3des.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-3DES |
| all_final += rsa_pkcs8_pbe_sha1_1024_3des.der |
| rsa_pkcs8_pbe_sha1_1024_3des.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-3DES |
| all_final += rsa_pkcs8_pbe_sha1_1024_3des.pem |
| keys_rsa_enc_pkcs8_v1_1024_3des: rsa_pkcs8_pbe_sha1_1024_3des.pem rsa_pkcs8_pbe_sha1_1024_3des.der |
| |
| rsa_pkcs8_pbe_sha1_1024_2des.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-2DES |
| all_final += rsa_pkcs8_pbe_sha1_1024_2des.der |
| rsa_pkcs8_pbe_sha1_1024_2des.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-2DES |
| all_final += rsa_pkcs8_pbe_sha1_1024_2des.pem |
| keys_rsa_enc_pkcs8_v1_1024_2des: rsa_pkcs8_pbe_sha1_1024_2des.pem rsa_pkcs8_pbe_sha1_1024_2des.der |
| |
| rsa_pkcs8_pbe_sha1_1024_rc4_128.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-RC4-128 |
| all_final += rsa_pkcs8_pbe_sha1_1024_rc4_128.der |
| rsa_pkcs8_pbe_sha1_1024_rc4_128.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-RC4-128 |
| all_final += rsa_pkcs8_pbe_sha1_1024_rc4_128.pem |
| keys_rsa_enc_pkcs8_v1_1024_rc4_128: rsa_pkcs8_pbe_sha1_1024_rc4_128.pem rsa_pkcs8_pbe_sha1_1024_rc4_128.der |
| |
| keys_rsa_enc_pkcs8_v1_1024: keys_rsa_enc_pkcs8_v1_1024_3des keys_rsa_enc_pkcs8_v1_1024_2des keys_rsa_enc_pkcs8_v1_1024_rc4_128 |
| |
| ### 2048-bit |
| rsa_pkcs8_pbe_sha1_2048_3des.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-3DES |
| all_final += rsa_pkcs8_pbe_sha1_2048_3des.der |
| rsa_pkcs8_pbe_sha1_2048_3des.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-3DES |
| all_final += rsa_pkcs8_pbe_sha1_2048_3des.pem |
| keys_rsa_enc_pkcs8_v1_2048_3des: rsa_pkcs8_pbe_sha1_2048_3des.pem rsa_pkcs8_pbe_sha1_2048_3des.der |
| |
| rsa_pkcs8_pbe_sha1_2048_2des.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-2DES |
| all_final += rsa_pkcs8_pbe_sha1_2048_2des.der |
| rsa_pkcs8_pbe_sha1_2048_2des.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-2DES |
| all_final += rsa_pkcs8_pbe_sha1_2048_2des.pem |
| keys_rsa_enc_pkcs8_v1_2048_2des: rsa_pkcs8_pbe_sha1_2048_2des.pem rsa_pkcs8_pbe_sha1_2048_2des.der |
| |
| rsa_pkcs8_pbe_sha1_2048_rc4_128.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-RC4-128 |
| all_final += rsa_pkcs8_pbe_sha1_2048_rc4_128.der |
| rsa_pkcs8_pbe_sha1_2048_rc4_128.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-RC4-128 |
| all_final += rsa_pkcs8_pbe_sha1_2048_rc4_128.pem |
| keys_rsa_enc_pkcs8_v1_2048_rc4_128: rsa_pkcs8_pbe_sha1_2048_rc4_128.pem rsa_pkcs8_pbe_sha1_2048_rc4_128.der |
| |
| keys_rsa_enc_pkcs8_v1_2048: keys_rsa_enc_pkcs8_v1_2048_3des keys_rsa_enc_pkcs8_v1_2048_2des keys_rsa_enc_pkcs8_v1_2048_rc4_128 |
| |
| ### 4096-bit |
| rsa_pkcs8_pbe_sha1_4096_3des.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-3DES |
| all_final += rsa_pkcs8_pbe_sha1_4096_3des.der |
| rsa_pkcs8_pbe_sha1_4096_3des.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-3DES |
| all_final += rsa_pkcs8_pbe_sha1_4096_3des.pem |
| keys_rsa_enc_pkcs8_v1_4096_3des: rsa_pkcs8_pbe_sha1_4096_3des.pem rsa_pkcs8_pbe_sha1_4096_3des.der |
| |
| rsa_pkcs8_pbe_sha1_4096_2des.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-2DES |
| all_final += rsa_pkcs8_pbe_sha1_4096_2des.der |
| rsa_pkcs8_pbe_sha1_4096_2des.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-2DES |
| all_final += rsa_pkcs8_pbe_sha1_4096_2des.pem |
| keys_rsa_enc_pkcs8_v1_4096_2des: rsa_pkcs8_pbe_sha1_4096_2des.pem rsa_pkcs8_pbe_sha1_4096_2des.der |
| |
| rsa_pkcs8_pbe_sha1_4096_rc4_128.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-RC4-128 |
| all_final += rsa_pkcs8_pbe_sha1_4096_rc4_128.der |
| rsa_pkcs8_pbe_sha1_4096_rc4_128.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" -topk8 -v1 PBE-SHA1-RC4-128 |
| all_final += rsa_pkcs8_pbe_sha1_4096_rc4_128.pem |
| keys_rsa_enc_pkcs8_v1_4096_rc4_128: rsa_pkcs8_pbe_sha1_4096_rc4_128.pem rsa_pkcs8_pbe_sha1_4096_rc4_128.der |
| |
| keys_rsa_enc_pkcs8_v1_4096: keys_rsa_enc_pkcs8_v1_4096_3des keys_rsa_enc_pkcs8_v1_4096_2des keys_rsa_enc_pkcs8_v1_4096_rc4_128 |
| |
| ### |
| ### PKCS8-v2 encoded, encrypted RSA keys, no PRF specified (default for OpenSSL1.0: hmacWithSHA1) |
| ### |
| |
| ### 1024-bit |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des.pem |
| keys_rsa_enc_pkcs8_v2_1024_3des: rsa_pkcs8_pbes2_pbkdf2_1024_3des.der rsa_pkcs8_pbes2_pbkdf2_1024_3des.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_1024_des.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_des.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des.pem |
| keys_rsa_enc_pkcs8_v2_1024_des: rsa_pkcs8_pbes2_pbkdf2_1024_des.der rsa_pkcs8_pbes2_pbkdf2_1024_des.pem |
| |
| keys_rsa_enc_pkcs8_v2_1024: keys_rsa_enc_pkcs8_v2_1024_3des keys_rsa_enc_pkcs8_v2_1024_des |
| |
| ### 2048-bit |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des.pem |
| keys_rsa_enc_pkcs8_v2_2048_3des: rsa_pkcs8_pbes2_pbkdf2_2048_3des.der rsa_pkcs8_pbes2_pbkdf2_2048_3des.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_2048_des.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_des.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des.pem |
| keys_rsa_enc_pkcs8_v2_2048_des: rsa_pkcs8_pbes2_pbkdf2_2048_des.der rsa_pkcs8_pbes2_pbkdf2_2048_des.pem |
| |
| keys_rsa_enc_pkcs8_v2_2048: keys_rsa_enc_pkcs8_v2_2048_3des keys_rsa_enc_pkcs8_v2_2048_des |
| |
| ### 4096-bit |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des.pem |
| keys_rsa_enc_pkcs8_v2_4096_3des: rsa_pkcs8_pbes2_pbkdf2_4096_3des.der rsa_pkcs8_pbes2_pbkdf2_4096_3des.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_4096_des.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_des.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des.pem |
| keys_rsa_enc_pkcs8_v2_4096_des: rsa_pkcs8_pbes2_pbkdf2_4096_des.der rsa_pkcs8_pbes2_pbkdf2_4096_des.pem |
| |
| keys_rsa_enc_pkcs8_v2_4096: keys_rsa_enc_pkcs8_v2_4096_3des keys_rsa_enc_pkcs8_v2_4096_des |
| |
| ### |
| ### PKCS8-v2 encoded, encrypted RSA keys, PRF hmacWithSHA224 |
| ### |
| |
| ### 1024-bit |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha224.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA224 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha224.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha224.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA224 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha224.pem |
| keys_rsa_enc_pkcs8_v2_1024_3des_sha224: rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha224.der rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha224.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_1024_des_sha224.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA224 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des_sha224.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_des_sha224.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA224 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des_sha224.pem |
| keys_rsa_enc_pkcs8_v2_1024_des_sha224: rsa_pkcs8_pbes2_pbkdf2_1024_des_sha224.der rsa_pkcs8_pbes2_pbkdf2_1024_des_sha224.pem |
| |
| keys_rsa_enc_pkcs8_v2_1024_sha224: keys_rsa_enc_pkcs8_v2_1024_3des_sha224 keys_rsa_enc_pkcs8_v2_1024_des_sha224 |
| |
| ### 2048-bit |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha224.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA224 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha224.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha224.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA224 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha224.pem |
| keys_rsa_enc_pkcs8_v2_2048_3des_sha224: rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha224.der rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha224.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_2048_des_sha224.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA224 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des_sha224.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_des_sha224.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA224 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des_sha224.pem |
| keys_rsa_enc_pkcs8_v2_2048_des_sha224: rsa_pkcs8_pbes2_pbkdf2_2048_des_sha224.der rsa_pkcs8_pbes2_pbkdf2_2048_des_sha224.pem |
| |
| keys_rsa_enc_pkcs8_v2_2048_sha224: keys_rsa_enc_pkcs8_v2_2048_3des_sha224 keys_rsa_enc_pkcs8_v2_2048_des_sha224 |
| |
| ### 4096-bit |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha224.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA224 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha224.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha224.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA224 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha224.pem |
| keys_rsa_enc_pkcs8_v2_4096_3des_sha224: rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha224.der rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha224.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_4096_des_sha224.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA224 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des_sha224.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_des_sha224.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA224 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des_sha224.pem |
| keys_rsa_enc_pkcs8_v2_4096_des_sha224: rsa_pkcs8_pbes2_pbkdf2_4096_des_sha224.der rsa_pkcs8_pbes2_pbkdf2_4096_des_sha224.pem |
| |
| keys_rsa_enc_pkcs8_v2_4096_sha224: keys_rsa_enc_pkcs8_v2_4096_3des_sha224 keys_rsa_enc_pkcs8_v2_4096_des_sha224 |
| |
| ### |
| ### PKCS8-v2 encoded, encrypted RSA keys, PRF hmacWithSHA256 |
| ### |
| |
| ### 1024-bit |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha256.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA256 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha256.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha256.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA256 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha256.pem |
| keys_rsa_enc_pkcs8_v2_1024_3des_sha256: rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha256.der rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha256.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_1024_des_sha256.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA256 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des_sha256.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_des_sha256.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA256 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des_sha256.pem |
| keys_rsa_enc_pkcs8_v2_1024_des_sha256: rsa_pkcs8_pbes2_pbkdf2_1024_des_sha256.der rsa_pkcs8_pbes2_pbkdf2_1024_des_sha256.pem |
| |
| keys_rsa_enc_pkcs8_v2_1024_sha256: keys_rsa_enc_pkcs8_v2_1024_3des_sha256 keys_rsa_enc_pkcs8_v2_1024_des_sha256 |
| |
| ### 2048-bit |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha256.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA256 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha256.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha256.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA256 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha256.pem |
| keys_rsa_enc_pkcs8_v2_2048_3des_sha256: rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha256.der rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha256.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_2048_des_sha256.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA256 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des_sha256.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_des_sha256.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA256 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des_sha256.pem |
| keys_rsa_enc_pkcs8_v2_2048_des_sha256: rsa_pkcs8_pbes2_pbkdf2_2048_des_sha256.der rsa_pkcs8_pbes2_pbkdf2_2048_des_sha256.pem |
| |
| keys_rsa_enc_pkcs8_v2_2048_sha256: keys_rsa_enc_pkcs8_v2_2048_3des_sha256 keys_rsa_enc_pkcs8_v2_2048_des_sha256 |
| |
| ### 4096-bit |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha256.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA256 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha256.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha256.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA256 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha256.pem |
| keys_rsa_enc_pkcs8_v2_4096_3des_sha256: rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha256.der rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha256.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_4096_des_sha256.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA256 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des_sha256.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_des_sha256.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA256 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des_sha256.pem |
| keys_rsa_enc_pkcs8_v2_4096_des_sha256: rsa_pkcs8_pbes2_pbkdf2_4096_des_sha256.der rsa_pkcs8_pbes2_pbkdf2_4096_des_sha256.pem |
| |
| keys_rsa_enc_pkcs8_v2_4096_sha256: keys_rsa_enc_pkcs8_v2_4096_3des_sha256 keys_rsa_enc_pkcs8_v2_4096_des_sha256 |
| |
| ### |
| ### PKCS8-v2 encoded, encrypted RSA keys, PRF hmacWithSHA384 |
| ### |
| |
| ### 1024-bit |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha384.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA384 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha384.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha384.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA384 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha384.pem |
| keys_rsa_enc_pkcs8_v2_1024_3des_sha384: rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha384.der rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha384.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_1024_des_sha384.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA384 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des_sha384.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_des_sha384.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA384 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des_sha384.pem |
| keys_rsa_enc_pkcs8_v2_1024_des_sha384: rsa_pkcs8_pbes2_pbkdf2_1024_des_sha384.der rsa_pkcs8_pbes2_pbkdf2_1024_des_sha384.pem |
| |
| keys_rsa_enc_pkcs8_v2_1024_sha384: keys_rsa_enc_pkcs8_v2_1024_3des_sha384 keys_rsa_enc_pkcs8_v2_1024_des_sha384 |
| |
| ### 2048-bit |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha384.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA384 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha384.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha384.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA384 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha384.pem |
| keys_rsa_enc_pkcs8_v2_2048_3des_sha384: rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha384.der rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha384.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_2048_des_sha384.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA384 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des_sha384.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_des_sha384.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA384 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des_sha384.pem |
| keys_rsa_enc_pkcs8_v2_2048_des_sha384: rsa_pkcs8_pbes2_pbkdf2_2048_des_sha384.der rsa_pkcs8_pbes2_pbkdf2_2048_des_sha384.pem |
| |
| keys_rsa_enc_pkcs8_v2_2048_sha384: keys_rsa_enc_pkcs8_v2_2048_3des_sha384 keys_rsa_enc_pkcs8_v2_2048_des_sha384 |
| |
| ### 4096-bit |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha384.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA384 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha384.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha384.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA384 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha384.pem |
| keys_rsa_enc_pkcs8_v2_4096_3des_sha384: rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha384.der rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha384.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_4096_des_sha384.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA384 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des_sha384.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_des_sha384.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA384 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des_sha384.pem |
| keys_rsa_enc_pkcs8_v2_4096_des_sha384: rsa_pkcs8_pbes2_pbkdf2_4096_des_sha384.der rsa_pkcs8_pbes2_pbkdf2_4096_des_sha384.pem |
| |
| keys_rsa_enc_pkcs8_v2_4096_sha384: keys_rsa_enc_pkcs8_v2_4096_3des_sha384 keys_rsa_enc_pkcs8_v2_4096_des_sha384 |
| |
| ### |
| ### PKCS8-v2 encoded, encrypted RSA keys, PRF hmacWithSHA512 |
| ### |
| |
| ### 1024-bit |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha512.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA512 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha512.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha512.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA512 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha512.pem |
| keys_rsa_enc_pkcs8_v2_1024_3des_sha512: rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha512.der rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha512.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_1024_des_sha512.der: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA512 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des_sha512.der |
| rsa_pkcs8_pbes2_pbkdf2_1024_des_sha512.pem: rsa_pkcs1_1024_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA512 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_1024_des_sha512.pem |
| keys_rsa_enc_pkcs8_v2_1024_des_sha512: rsa_pkcs8_pbes2_pbkdf2_1024_des_sha512.der rsa_pkcs8_pbes2_pbkdf2_1024_des_sha512.pem |
| |
| keys_rsa_enc_pkcs8_v2_1024_sha512: keys_rsa_enc_pkcs8_v2_1024_3des_sha512 keys_rsa_enc_pkcs8_v2_1024_des_sha512 |
| |
| ### 2048-bit |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha512.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA512 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha512.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha512.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA512 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha512.pem |
| keys_rsa_enc_pkcs8_v2_2048_3des_sha512: rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha512.der rsa_pkcs8_pbes2_pbkdf2_2048_3des_sha512.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_2048_des_sha512.der: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA512 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des_sha512.der |
| rsa_pkcs8_pbes2_pbkdf2_2048_des_sha512.pem: rsa_pkcs1_2048_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA512 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_2048_des_sha512.pem |
| keys_rsa_enc_pkcs8_v2_2048_des_sha512: rsa_pkcs8_pbes2_pbkdf2_2048_des_sha512.der rsa_pkcs8_pbes2_pbkdf2_2048_des_sha512.pem |
| |
| keys_rsa_enc_pkcs8_v2_2048_sha512: keys_rsa_enc_pkcs8_v2_2048_3des_sha512 keys_rsa_enc_pkcs8_v2_2048_des_sha512 |
| |
| ### 4096-bit |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha512.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA512 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha512.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha512.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des3 -v2prf hmacWithSHA512 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha512.pem |
| keys_rsa_enc_pkcs8_v2_4096_3des_sha512: rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha512.der rsa_pkcs8_pbes2_pbkdf2_4096_3des_sha512.pem |
| |
| rsa_pkcs8_pbes2_pbkdf2_4096_des_sha512.der: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA512 -inform PEM -in $< -outform DER -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des_sha512.der |
| rsa_pkcs8_pbes2_pbkdf2_4096_des_sha512.pem: rsa_pkcs1_4096_clear.pem |
| $(OPENSSL) pkcs8 -topk8 -v2 des -v2prf hmacWithSHA512 -inform PEM -in $< -outform PEM -out $@ -passout "pass:$(keys_rsa_pkcs8_pwd)" |
| all_final += rsa_pkcs8_pbes2_pbkdf2_4096_des_sha512.pem |
| keys_rsa_enc_pkcs8_v2_4096_des_sha512: rsa_pkcs8_pbes2_pbkdf2_4096_des_sha512.der rsa_pkcs8_pbes2_pbkdf2_4096_des_sha512.pem |
| |
| keys_rsa_enc_pkcs8_v2_4096_sha512: keys_rsa_enc_pkcs8_v2_4096_3des_sha512 keys_rsa_enc_pkcs8_v2_4096_des_sha512 |
| |
| ### |
| ### Rules to generate all RSA keys from a particular class |
| ### |
| |
| ### Generate basic unencrypted RSA keys |
| keys_rsa_unenc: rsa_pkcs1_1024_clear.pem rsa_pkcs1_2048_clear.pem rsa_pkcs1_4096_clear.pem |
| |
| ### Generate PKCS1-encoded encrypted RSA keys |
| keys_rsa_enc_basic: keys_rsa_enc_basic_1024 keys_rsa_enc_basic_2048 keys_rsa_enc_basic_4096 |
| |
| ### Generate PKCS8-v1 encrypted RSA keys |
| keys_rsa_enc_pkcs8_v1: keys_rsa_enc_pkcs8_v1_1024 keys_rsa_enc_pkcs8_v1_2048 keys_rsa_enc_pkcs8_v1_4096 |
| |
| ### Generate PKCS8-v2 encrypted RSA keys |
| keys_rsa_enc_pkcs8_v2: keys_rsa_enc_pkcs8_v2_1024 keys_rsa_enc_pkcs8_v2_2048 keys_rsa_enc_pkcs8_v2_4096 keys_rsa_enc_pkcs8_v2_1024_sha224 keys_rsa_enc_pkcs8_v2_2048_sha224 keys_rsa_enc_pkcs8_v2_4096_sha224 keys_rsa_enc_pkcs8_v2_1024_sha256 keys_rsa_enc_pkcs8_v2_2048_sha256 keys_rsa_enc_pkcs8_v2_4096_sha256 keys_rsa_enc_pkcs8_v2_1024_sha384 keys_rsa_enc_pkcs8_v2_2048_sha384 keys_rsa_enc_pkcs8_v2_4096_sha384 keys_rsa_enc_pkcs8_v2_1024_sha512 keys_rsa_enc_pkcs8_v2_2048_sha512 keys_rsa_enc_pkcs8_v2_4096_sha512 |
| |
| ### Generate all RSA keys |
| keys_rsa_all: keys_rsa_unenc keys_rsa_enc_basic keys_rsa_enc_pkcs8_v1 keys_rsa_enc_pkcs8_v2 |
| |
| ################################################################ |
| #### Generate various EC keys |
| ################################################################ |
| |
| ### |
| ### PKCS8 encoded |
| ### |
| |
| ec_prv.pk8.der: |
| $(OPENSSL) genpkey -algorithm EC -pkeyopt ec_paramgen_curve:prime192v1 -pkeyopt ec_param_enc:named_curve -out $@ -outform DER |
| all_final += ec_prv.pk8.der |
| |
| # ### Instructions for creating `ec_prv.pk8nopub.der`, |
| # ### `ec_prv.pk8nopubparam.der`, and `ec_prv.pk8param.der` by hand from |
| # ### `ec_prv.pk8.der`. |
| # |
| # These instructions assume you are familiar with ASN.1 DER encoding and can |
| # use a hex editor to manipulate DER. |
| # |
| # The relevant ASN.1 definitions for a PKCS#8 encoded Elliptic Curve key are: |
| # |
| # PrivateKeyInfo ::= SEQUENCE { |
| # version Version, |
| # privateKeyAlgorithm PrivateKeyAlgorithmIdentifier, |
| # privateKey PrivateKey, |
| # attributes [0] IMPLICIT Attributes OPTIONAL |
| # } |
| # |
| # AlgorithmIdentifier ::= SEQUENCE { |
| # algorithm OBJECT IDENTIFIER, |
| # parameters ANY DEFINED BY algorithm OPTIONAL |
| # } |
| # |
| # ECParameters ::= CHOICE { |
| # namedCurve OBJECT IDENTIFIER |
| # -- implicitCurve NULL |
| # -- specifiedCurve SpecifiedECDomain |
| # } |
| # |
| # ECPrivateKey ::= SEQUENCE { |
| # version INTEGER { ecPrivkeyVer1(1) } (ecPrivkeyVer1), |
| # privateKey OCTET STRING, |
| # parameters [0] ECParameters {{ NamedCurve }} OPTIONAL, |
| # publicKey [1] BIT STRING OPTIONAL |
| # } |
| # |
| # `ec_prv.pk8.der` as generatde above by OpenSSL should have the following |
| # fields: |
| # |
| # * privateKeyAlgorithm namedCurve |
| # * privateKey.parameters NOT PRESENT |
| # * privateKey.publicKey PRESENT |
| # * attributes NOT PRESENT |
| # |
| # # ec_prv.pk8nopub.der |
| # |
| # Take `ec_prv.pk8.der` and remove `privateKey.publicKey`. |
| # |
| # # ec_prv.pk8nopubparam.der |
| # |
| # Take `ec_prv.pk8nopub.der` and add `privateKey.parameters`, the same value as |
| # `privateKeyAlgorithm.namedCurve`. Don't forget to add the explicit tag. |
| # |
| # # ec_prv.pk8param.der |
| # |
| # Take `ec_prv.pk8.der` and add `privateKey.parameters`, the same value as |
| # `privateKeyAlgorithm.namedCurve`. Don't forget to add the explicit tag. |
| |
| ec_prv.pk8.pem: ec_prv.pk8.der |
| $(OPENSSL) pkey -in $< -inform DER -out $@ |
| all_final += ec_prv.pk8.pem |
| ec_prv.pk8nopub.pem: ec_prv.pk8nopub.der |
| $(OPENSSL) pkey -in $< -inform DER -out $@ |
| all_final += ec_prv.pk8nopub.pem |
| ec_prv.pk8nopubparam.pem: ec_prv.pk8nopubparam.der |
| $(OPENSSL) pkey -in $< -inform DER -out $@ |
| all_final += ec_prv.pk8nopubparam.pem |
| ec_prv.pk8param.pem: ec_prv.pk8param.der |
| $(OPENSSL) pkey -in $< -inform DER -out $@ |
| all_final += ec_prv.pk8param.pem |
| |
| ################################################################ |
| ### Generate CSRs for X.509 write test suite |
| ################################################################ |
| |
| # server2* |
| |
| server2.req.sha256: server2.key |
| $(MBEDTLS_CERT_REQ) output_file=$@ filename=$< subject_name="C=NL,O=PolarSSL,CN=localhost" md=SHA256 |
| all_intermediate += server2.req.sha256 |
| |
| ################################################################ |
| ### Generate certificates for CRT write check tests |
| ################################################################ |
| |
| # server2* |
| |
| server2.crt: server2.req.sha256 |
| $(MBEDTLS_CERT_WRITE) request_file=server2.req.sha256 serial=2 issuer_crt=$(test_ca_crt) issuer_key=$(test_ca_key_file_rsa) issuer_pwd=$(test_ca_pwd_rsa) not_before=20190210144406 not_after=20290210144406 md=SHA1 version=3 output_file=$@ |
| all_final += server2.crt |
| |
| server2.der: server2.crt |
| $(OPENSSL) x509 -inform PEM -in $< -outform DER -out $@ |
| all_final += server2.der |
| |
| server2-sha256.crt: server2.req.sha256 |
| $(MBEDTLS_CERT_WRITE) request_file=server2.req.sha256 serial=2 issuer_crt=$(test_ca_crt) issuer_key=$(test_ca_key_file_rsa) issuer_pwd=$(test_ca_pwd_rsa) not_before=20190210144406 not_after=20290210144406 md=SHA256 version=3 output_file=$@ |
| all_final += server2-sha256.crt |
| |
| |
| |
| ################################################################ |
| #### Meta targets |
| ################################################################ |
| |
| all_final: $(all_final) |
| all: $(all_intermediate) $(all_final) |
| |
| .PHONY: default all_final all |
| .PHONY: keys_rsa_all |
| .PHONY: keys_rsa_unenc keys_rsa_enc_basic |
| .PHONY: keys_rsa_enc_pkcs8_v1 keys_rsa_enc_pkcs8_v2 |
| .PHONY: keys_rsa_enc_basic_1024 keys_rsa_enc_basic_2048 keys_rsa_enc_basic_4096 |
| .PHONY: keys_rsa_enc_pkcs8_v1_1024 keys_rsa_enc_pkcs8_v2_1024 |
| .PHONY: keys_rsa_enc_pkcs8_v1_2048 keys_rsa_enc_pkcs8_v2_2048 |
| .PHONY: keys_rsa_enc_pkcs8_v1_4096 keys_rsa_enc_pkcs8_v2_4096 |
| |
| # These files should not be committed to the repository. |
| list_intermediate: |
| @printf '%s\n' $(all_intermediate) | sort |
| # These files should be committed to the repository so that the test data is |
| # available upon checkout without running a randomized process depending on |
| # third-party tools. |
| list_final: |
| @printf '%s\n' $(all_final) | sort |
| .PHONY: list_intermediate list_final |
| |
| ## Remove intermediate files |
| clean: |
| rm -f $(all_intermediate) |
| ## Remove all build products, even the ones that are committed |
| neat: clean |
| rm -f $(all_final) |
| .PHONY: clean neat |