Skip to content

Commit 43aad1e

Browse files
LinuxJediLinuxJedi
committed
Fix SM4 TLS 1.3 decrypt auth tag and SM2 cert verification
- Fix SM4 GCM/CCM TLS 1.3 decrypt to read auth tag from input buffer instead of output buffer, consistent with all other AEAD ciphers (src/tls13.c) - Fix SM4_BLOCK_SIZE typo (was SM$_BLOCK_SIZE) in TicketEncDec SM4-GCM decrypt path (src/internal.c) - Fix SM2 certificate signature verification for certs using id-ecPublicKey (ECDSAk) with SM2-with-SM3 signature algorithm. OpenSSL creates SM2 cert signatures without the standard distinguishing identifier in the ZA hash. The SM2k code path already handled this correctly (idSz=0), but the ECDSAk + CTC_SM3wSM2 path was incorrectly using CERT_SIG_ID_SZ (16), causing ASN_SIG_CONFIRM_E (-155) when verifying non-self-signed SM2 certs (wolfcrypt/src/asn.c) - Regenerate expired SM2 test certificates via certs/sm2/gen-sm2-certs.sh They had expired.
1 parent b7c3bbf commit 43aad1e

13 files changed

Lines changed: 136 additions & 135 deletions

certs/sm2/ca-sm2.der

0 Bytes
Binary file not shown.

certs/sm2/ca-sm2.pem

Lines changed: 18 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -3,13 +3,13 @@ Certificate:
33
Version: 3 (0x2)
44
Serial Number: 1 (0x1)
55
Signature Algorithm: SM2-with-SM3
6-
Issuer: C = US, ST = Montana, L = Bozeman, O = wolfSSL_SM2, OU = Root-SM2, CN = www.wolfssl.com, emailAddress = info@wolfssl.com
6+
Issuer: C=US, ST=Montana, L=Bozeman, O=wolfSSL_SM2, OU=Root-SM2, CN=www.wolfssl.com, emailAddress=info@wolfssl.com
77
Validity
8-
Not Before: Feb 15 06:23:07 2023 GMT
9-
Not After : Nov 11 06:23:07 2025 GMT
10-
Subject: C = US, ST = Montana, L = Bozeman, O = wolfSSL_sm2, OU = CA-sm2, CN = www.wolfssl.com, emailAddress = info@wolfssl.com, UID = wolfSSL
8+
Not Before: Feb 18 14:27:26 2026 GMT
9+
Not After : Nov 14 14:27:26 2028 GMT
10+
Subject: C=US, ST=Montana, L=Bozeman, O=wolfSSL_sm2, OU=CA-sm2, CN=www.wolfssl.com, emailAddress=info@wolfssl.com, UID=wolfSSL
1111
Subject Public Key Info:
12-
Public Key Algorithm: sm2
12+
Public Key Algorithm: id-ecPublicKey
1313
Public-Key: (256 bit)
1414
pub:
1515
04:21:92:f7:cb:24:df:64:4d:ba:ab:66:7b:83:75:
@@ -29,23 +29,23 @@ Certificate:
2929
Digital Signature, Certificate Sign, CRL Sign
3030
Signature Algorithm: SM2-with-SM3
3131
Signature Value:
32-
30:45:02:20:47:4e:00:03:ab:34:a1:af:59:39:8f:60:36:bf:
33-
89:88:42:41:27:c1:dd:57:c9:79:cb:1f:56:5c:16:b5:28:bd:
34-
02:21:00:8b:2e:25:eb:21:9b:a9:2b:a6:6a:5b:db:a7:c7:2b:
35-
11:df:73:15:ad:e4:c5:c3:c2:f3:b4:b4:67:af:d7:51:1c
32+
30:46:02:21:00:ba:6b:14:b0:ef:08:bf:4c:32:63:62:2e:e1:
33+
5d:04:d9:45:04:79:c9:bf:9a:93:9f:05:44:f5:e6:33:64:b4:
34+
7e:02:21:00:e3:17:fe:87:35:30:f2:3b:ab:16:2d:5e:30:76:
35+
42:4e:cc:85:96:b9:2f:af:55:00:a5:4f:43:7c:13:54:3f:4f
3636
-----BEGIN CERTIFICATE-----
37-
MIICljCCAjygAwIBAgIBATAKBggqgRzPVQGDdTCBlTELMAkGA1UEBhMCVVMxEDAO
37+
MIICljCCAjugAwIBAgIBATAKBggqgRzPVQGDdTCBlTELMAkGA1UEBhMCVVMxEDAO
3838
BgNVBAgMB01vbnRhbmExEDAOBgNVBAcMB0JvemVtYW4xFDASBgNVBAoMC3dvbGZT
3939
U0xfU00yMREwDwYDVQQLDAhSb290LVNNMjEYMBYGA1UEAwwPd3d3LndvbGZzc2wu
40-
Y29tMR8wHQYJKoZIhvcNAQkBFhBpbmZvQHdvbGZzc2wuY29tMB4XDTIzMDIxNTA2
41-
MjMwN1oXDTI1MTExMTA2MjMwN1owgawxCzAJBgNVBAYTAlVTMRAwDgYDVQQIDAdN
40+
Y29tMR8wHQYJKoZIhvcNAQkBFhBpbmZvQHdvbGZzc2wuY29tMB4XDTI2MDIxODE0
41+
MjcyNloXDTI4MTExNDE0MjcyNlowgawxCzAJBgNVBAYTAlVTMRAwDgYDVQQIDAdN
4242
b250YW5hMRAwDgYDVQQHDAdCb3plbWFuMRQwEgYDVQQKDAt3b2xmU1NMX3NtMjEP
4343
MA0GA1UECwwGQ0Etc20yMRgwFgYDVQQDDA93d3cud29sZnNzbC5jb20xHzAdBgkq
4444
hkiG9w0BCQEWEGluZm9Ad29sZnNzbC5jb20xFzAVBgoJkiaJk/IsZAEBDAd3b2xm
45-
U1NMMFowFAYIKoEcz1UBgi0GCCqBHM9VAYItA0IABCGS98sk32RNuqtme4N1qSnn
46-
/2RjttVCgCC94uICEjuOtACVCYDLVu1Lyo1X5q4F03YnY3E5ibdp5kiArtGpSBKj
47-
YzBhMB0GA1UdDgQWBBRHCkh+uwKoWiZXKxmpe2GLf12ZbjAfBgNVHSMEGDAWgBQ0
48-
HXlEFXmhsWOZ4+1lfGSJgP+47DAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQE
49-
AwIBhjAKBggqgRzPVQGDdQNIADBFAiBHTgADqzShr1k5j2A2v4mIQkEnwd1XyXnL
50-
H1ZcFrUovQIhAIsuJeshm6krpmpb26fHKxHfcxWt5MXDwvO0tGev11Ec
45+
U1NMMFkwEwYHKoZIzj0CAQYIKoEcz1UBgi0DQgAEIZL3yyTfZE26q2Z7g3WpKef/
46+
ZGO21UKAIL3i4gISO460AJUJgMtW7UvKjVfmrgXTdidjcTmJt2nmSICu0alIEqNj
47+
MGEwHQYDVR0OBBYEFEcKSH67AqhaJlcrGal7YYt/XZluMB8GA1UdIwQYMBaAFDQd
48+
eUQVeaGxY5nj7WV8ZImA/7jsMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQD
49+
AgGGMAoGCCqBHM9VAYN1A0kAMEYCIQC6axSw7wi/TDJjYi7hXQTZRQR5yb+ak58F
50+
RPXmM2S0fgIhAOMX/oc1MPI7qxYtXjB2Qk7MhZa5L69VAKVPQ3wTVD9P
5151
-----END CERTIFICATE-----

certs/sm2/client-sm2.der

-3 Bytes
Binary file not shown.

certs/sm2/client-sm2.pem

Lines changed: 26 additions & 26 deletions
Original file line numberDiff line numberDiff line change
@@ -2,15 +2,15 @@ Certificate:
22
Data:
33
Version: 3 (0x2)
44
Serial Number:
5-
60:a0:4a:0b:36:eb:7d:e1:3f:74:29:a9:29:b4:05:6c:17:f7:a6:d4
5+
22:ce:97:23:6f:99:f4:f3:25:25:7e:01:76:ce:ae:80:56:b6:41:d1
66
Signature Algorithm: SM2-with-SM3
7-
Issuer: C = US, ST = Montana, L = Bozeman, O = wolfSSL_sm2, OU = Client-sm2, CN = www.wolfssl.com, emailAddress = info@wolfssl.com, UID = wolfSSL
7+
Issuer: C=US, ST=Montana, L=Bozeman, O=wolfSSL_sm2, OU=Client-sm2, CN=www.wolfssl.com, emailAddress=info@wolfssl.com, UID=wolfSSL
88
Validity
9-
Not Before: Feb 15 06:23:07 2023 GMT
10-
Not After : Nov 11 06:23:07 2025 GMT
11-
Subject: C = US, ST = Montana, L = Bozeman, O = wolfSSL_sm2, OU = Client-sm2, CN = www.wolfssl.com, emailAddress = info@wolfssl.com, UID = wolfSSL
9+
Not Before: Feb 18 14:27:26 2026 GMT
10+
Not After : Nov 14 14:27:26 2028 GMT
11+
Subject: C=US, ST=Montana, L=Bozeman, O=wolfSSL_sm2, OU=Client-sm2, CN=www.wolfssl.com, emailAddress=info@wolfssl.com, UID=wolfSSL
1212
Subject Public Key Info:
13-
Public Key Algorithm: sm2
13+
Public Key Algorithm: id-ecPublicKey
1414
Public-Key: (256 bit)
1515
pub:
1616
04:3a:1d:e8:cb:4b:d3:2e:3f:4b:07:3f:b0:21:fe:
@@ -25,7 +25,7 @@ Certificate:
2525
X509v3 Authority Key Identifier:
2626
keyid:E4:21:B2:C5:E5:D4:9E:82:CA:F8:67:F2:28:99:F6:85:E8:F1:55:EF
2727
DirName:/C=US/ST=Montana/L=Bozeman/O=wolfSSL_sm2/OU=Client-sm2/CN=www.wolfssl.com/emailAddress=info@wolfssl.com/UID=wolfSSL
28-
serial:60:A0:4A:0B:36:EB:7D:E1:3F:74:29:A9:29:B4:05:6C:17:F7:A6:D4
28+
serial:22:CE:97:23:6F:99:F4:F3:25:25:7E:01:76:CE:AE:80:56:B6:41:D1
2929
X509v3 Basic Constraints:
3030
CA:TRUE
3131
X509v3 Subject Alternative Name:
@@ -34,30 +34,30 @@ Certificate:
3434
TLS Web Server Authentication, TLS Web Client Authentication
3535
Signature Algorithm: SM2-with-SM3
3636
Signature Value:
37-
30:46:02:21:00:8f:b2:b5:95:8f:79:f6:5e:75:e5:c5:e9:9a:
38-
12:d2:0f:78:9f:c0:1d:8d:1c:be:6b:0c:f1:f5:57:60:db:91:
39-
4f:02:21:00:87:5e:7d:e4:d6:3a:bb:7b:98:27:85:de:7a:f0:
40-
21:e2:66:a1:9f:26:e0:dd:86:23:b4:c8:c0:46:5a:f2:49:8d
37+
30:44:02:20:27:71:25:22:69:ed:80:eb:3f:39:0e:7a:9b:a7:
38+
22:66:76:ef:d4:b4:5e:e8:8f:47:06:c7:2f:a4:f5:0f:09:6e:
39+
02:20:18:f9:bb:4c:4a:a0:a0:c9:ff:42:24:a1:9a:63:6b:ec:
40+
d1:25:e5:49:de:bd:83:e0:90:81:f4:23:49:f7:84:6e
4141
-----BEGIN CERTIFICATE-----
42-
MIIDyTCCA26gAwIBAgIUYKBKCzbrfeE/dCmpKbQFbBf3ptQwCgYIKoEcz1UBg3Uw
42+
MIIDxjCCA22gAwIBAgIUIs6XI2+Z9PMlJX4Bds6ugFa2QdEwCgYIKoEcz1UBg3Uw
4343
gbAxCzAJBgNVBAYTAlVTMRAwDgYDVQQIDAdNb250YW5hMRAwDgYDVQQHDAdCb3pl
4444
bWFuMRQwEgYDVQQKDAt3b2xmU1NMX3NtMjETMBEGA1UECwwKQ2xpZW50LXNtMjEY
4545
MBYGA1UEAwwPd3d3LndvbGZzc2wuY29tMR8wHQYJKoZIhvcNAQkBFhBpbmZvQHdv
46-
bGZzc2wuY29tMRcwFQYKCZImiZPyLGQBAQwHd29sZlNTTDAeFw0yMzAyMTUwNjIz
47-
MDdaFw0yNTExMTEwNjIzMDdaMIGwMQswCQYDVQQGEwJVUzEQMA4GA1UECAwHTW9u
46+
bGZzc2wuY29tMRcwFQYKCZImiZPyLGQBAQwHd29sZlNTTDAeFw0yNjAyMTgxNDI3
47+
MjZaFw0yODExMTQxNDI3MjZaMIGwMQswCQYDVQQGEwJVUzEQMA4GA1UECAwHTW9u
4848
dGFuYTEQMA4GA1UEBwwHQm96ZW1hbjEUMBIGA1UECgwLd29sZlNTTF9zbTIxEzAR
4949
BgNVBAsMCkNsaWVudC1zbTIxGDAWBgNVBAMMD3d3dy53b2xmc3NsLmNvbTEfMB0G
5050
CSqGSIb3DQEJARYQaW5mb0B3b2xmc3NsLmNvbTEXMBUGCgmSJomT8ixkAQEMB3dv
51-
bGZTU0wwWjAUBggqgRzPVQGCLQYIKoEcz1UBgi0DQgAEOh3oy0vTLj9LBz+wIf7F
52-
ntnKOpOTlXYdMNkL9VbtGWDtAUz2Zx3xrKh0DbJ3yEk45P9M741th/ZOx/g5dHBw
53-
taOCAWEwggFdMB0GA1UdDgQWBBTkIbLF5dSegsr4Z/IomfaF6PFV7zCB8AYDVR0j
54-
BIHoMIHlgBTkIbLF5dSegsr4Z/IomfaF6PFV76GBtqSBszCBsDELMAkGA1UEBhMC
55-
VVMxEDAOBgNVBAgMB01vbnRhbmExEDAOBgNVBAcMB0JvemVtYW4xFDASBgNVBAoM
56-
C3dvbGZTU0xfc20yMRMwEQYDVQQLDApDbGllbnQtc20yMRgwFgYDVQQDDA93d3cu
57-
d29sZnNzbC5jb20xHzAdBgkqhkiG9w0BCQEWEGluZm9Ad29sZnNzbC5jb20xFzAV
58-
BgoJkiaJk/IsZAEBDAd3b2xmU1NMghRgoEoLNut94T90KakptAVsF/em1DAMBgNV
59-
HRMEBTADAQH/MBwGA1UdEQQVMBOCC2V4YW1wbGUuY29thwR/AAABMB0GA1UdJQQW
60-
MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAKBggqgRzPVQGDdQNJADBGAiEAj7K1lY95
61-
9l515cXpmhLSD3ifwB2NHL5rDPH1V2DbkU8CIQCHXn3k1jq7e5gnhd568CHiZqGf
62-
JuDdhiO0yMBGWvJJjQ==
51+
bGZTU0wwWTATBgcqhkjOPQIBBggqgRzPVQGCLQNCAAQ6HejLS9MuP0sHP7Ah/sWe
52+
2co6k5OVdh0w2Qv1Vu0ZYO0BTPZnHfGsqHQNsnfISTjk/0zvjW2H9k7H+Dl0cHC1
53+
o4IBYTCCAV0wHQYDVR0OBBYEFOQhssXl1J6Cyvhn8iiZ9oXo8VXvMIHwBgNVHSME
54+
gegwgeWAFOQhssXl1J6Cyvhn8iiZ9oXo8VXvoYG2pIGzMIGwMQswCQYDVQQGEwJV
55+
UzEQMA4GA1UECAwHTW9udGFuYTEQMA4GA1UEBwwHQm96ZW1hbjEUMBIGA1UECgwL
56+
d29sZlNTTF9zbTIxEzARBgNVBAsMCkNsaWVudC1zbTIxGDAWBgNVBAMMD3d3dy53
57+
b2xmc3NsLmNvbTEfMB0GCSqGSIb3DQEJARYQaW5mb0B3b2xmc3NsLmNvbTEXMBUG
58+
CgmSJomT8ixkAQEMB3dvbGZTU0yCFCLOlyNvmfTzJSV+AXbOroBWtkHRMAwGA1Ud
59+
EwQFMAMBAf8wHAYDVR0RBBUwE4ILZXhhbXBsZS5jb22HBH8AAAEwHQYDVR0lBBYw
60+
FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAoGCCqBHM9VAYN1A0cAMEQCICdxJSJp7YDr
61+
PzkOepunImZ279S0XuiPRwbHL6T1DwluAiAY+btMSqCgyf9CJKGaY2vs0SXlSd69
62+
g+CQgfQjSfeEbg==
6363
-----END CERTIFICATE-----

certs/sm2/root-sm2.der

1 Byte
Binary file not shown.

certs/sm2/root-sm2.pem

Lines changed: 18 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -2,15 +2,15 @@ Certificate:
22
Data:
33
Version: 3 (0x2)
44
Serial Number:
5-
74:9c:dd:a4:b2:67:26:57:29:fb:e9:13:54:e0:34:08:03:2b:70:a9
5+
44:c9:fc:33:05:6b:3c:f7:fc:15:02:02:f6:57:86:92:ca:7e:c2:31
66
Signature Algorithm: SM2-with-SM3
7-
Issuer: C = US, ST = Montana, L = Bozeman, O = wolfSSL_SM2, OU = Root-SM2, CN = www.wolfssl.com, emailAddress = info@wolfssl.com
7+
Issuer: C=US, ST=Montana, L=Bozeman, O=wolfSSL_SM2, OU=Root-SM2, CN=www.wolfssl.com, emailAddress=info@wolfssl.com
88
Validity
9-
Not Before: Feb 15 06:23:07 2023 GMT
10-
Not After : Nov 11 06:23:07 2025 GMT
11-
Subject: C = US, ST = Montana, L = Bozeman, O = wolfSSL_SM2, OU = Root-SM2, CN = www.wolfssl.com, emailAddress = info@wolfssl.com
9+
Not Before: Feb 18 14:27:26 2026 GMT
10+
Not After : Nov 14 14:27:26 2028 GMT
11+
Subject: C=US, ST=Montana, L=Bozeman, O=wolfSSL_SM2, OU=Root-SM2, CN=www.wolfssl.com, emailAddress=info@wolfssl.com
1212
Subject Public Key Info:
13-
Public Key Algorithm: sm2
13+
Public Key Algorithm: id-ecPublicKey
1414
Public-Key: (256 bit)
1515
pub:
1616
04:bb:9c:75:8c:f7:17:f8:48:ab:f7:f6:db:0d:9a:
@@ -30,23 +30,23 @@ Certificate:
3030
Digital Signature, Certificate Sign, CRL Sign
3131
Signature Algorithm: SM2-with-SM3
3232
Signature Value:
33-
30:44:02:20:03:27:29:f0:ef:78:26:a1:1a:6a:1e:88:81:e7:
34-
83:72:5f:3e:e6:08:e8:14:68:bf:4b:0f:68:52:92:aa:8f:a1:
35-
02:20:0b:fe:1b:14:ba:51:82:65:06:bb:22:d8:1a:a7:9f:54:
36-
62:eb:8d:b2:d5:13:b3:b8:a2:f3:14:44:b2:a0:21:d0
33+
30:46:02:21:00:87:f1:03:a0:b5:79:57:61:26:7e:73:1d:10:
34+
2f:dc:eb:e2:25:4a:a3:06:27:77:0d:d0:f4:ed:8d:53:62:83:
35+
6e:02:21:00:b6:e8:0b:78:ac:f6:79:e1:42:50:e1:46:68:6f:
36+
3f:4b:31:eb:ba:f0:04:40:5e:6a:50:39:a3:26:14:0d:5a:62
3737
-----BEGIN CERTIFICATE-----
38-
MIICkTCCAjigAwIBAgIUdJzdpLJnJlcp++kTVOA0CAMrcKkwCgYIKoEcz1UBg3Uw
38+
MIICkjCCAjegAwIBAgIURMn8MwVrPPf8FQIC9leGksp+wjEwCgYIKoEcz1UBg3Uw
3939
gZUxCzAJBgNVBAYTAlVTMRAwDgYDVQQIDAdNb250YW5hMRAwDgYDVQQHDAdCb3pl
4040
bWFuMRQwEgYDVQQKDAt3b2xmU1NMX1NNMjERMA8GA1UECwwIUm9vdC1TTTIxGDAW
4141
BgNVBAMMD3d3dy53b2xmc3NsLmNvbTEfMB0GCSqGSIb3DQEJARYQaW5mb0B3b2xm
42-
c3NsLmNvbTAeFw0yMzAyMTUwNjIzMDdaFw0yNTExMTEwNjIzMDdaMIGVMQswCQYD
42+
c3NsLmNvbTAeFw0yNjAyMTgxNDI3MjZaFw0yODExMTQxNDI3MjZaMIGVMQswCQYD
4343
VQQGEwJVUzEQMA4GA1UECAwHTW9udGFuYTEQMA4GA1UEBwwHQm96ZW1hbjEUMBIG
4444
A1UECgwLd29sZlNTTF9TTTIxETAPBgNVBAsMCFJvb3QtU00yMRgwFgYDVQQDDA93
4545
d3cud29sZnNzbC5jb20xHzAdBgkqhkiG9w0BCQEWEGluZm9Ad29sZnNzbC5jb20w
46-
WjAUBggqgRzPVQGCLQYIKoEcz1UBgi0DQgAEu5x1jPcX+Eir9/bbDZqNn8LRR5eV
47-
C07mV+zF+FdUcTk8eeFAP7ZR6XzH2i3v0uh5gXuro19rKmyXGl6O2dDMBKNjMGEw
48-
HQYDVR0OBBYEFDQdeUQVeaGxY5nj7WV8ZImA/7jsMB8GA1UdIwQYMBaAFDQdeUQV
49-
eaGxY5nj7WV8ZImA/7jsMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGG
50-
MAoGCCqBHM9VAYN1A0cAMEQCIAMnKfDveCahGmoeiIHng3JfPuYI6BRov0sPaFKS
51-
qo+hAiAL/hsUulGCZQa7Itgap59UYuuNstUTs7ii8xREsqAh0A==
46+
WTATBgcqhkjOPQIBBggqgRzPVQGCLQNCAAS7nHWM9xf4SKv39tsNmo2fwtFHl5UL
47+
TuZX7MX4V1RxOTx54UA/tlHpfMfaLe/S6HmBe6ujX2sqbJcaXo7Z0MwEo2MwYTAd
48+
BgNVHQ4EFgQUNB15RBV5obFjmePtZXxkiYD/uOwwHwYDVR0jBBgwFoAUNB15RBV5
49+
obFjmePtZXxkiYD/uOwwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAYYw
50+
CgYIKoEcz1UBg3UDSQAwRgIhAIfxA6C1eVdhJn5zHRAv3OviJUqjBid3DdD07Y1T
51+
YoNuAiEAtugLeKz2eeFCUOFGaG8/SzHruvAEQF5qUDmjJhQNWmI=
5252
-----END CERTIFICATE-----

certs/sm2/self-sm2-cert.pem

Lines changed: 13 additions & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -2,13 +2,13 @@ Certificate:
22
Data:
33
Version: 3 (0x2)
44
Serial Number:
5-
06:7b:3a:5d:cf:22:a9:6d:6d:78:2b:10:01:51:b6:4c:d4:82:a2:a1
5+
5a:4d:19:0c:5a:d6:78:7e:81:86:ec:3c:90:3a:31:f8:0c:be:8c:0f
66
Signature Algorithm: SM2-with-SM3
7-
Issuer: C = AU, ST = QLD, O = wolfSSL, OU = Testing, CN = wolfssl-dev-sm2, emailAddress = info@wolfssl.com, UID = wolfSSL
7+
Issuer: C=AU, ST=QLD, O=wolfSSL, OU=Testing, CN=wolfssl-dev-sm2, emailAddress=info@wolfssl.com, UID=wolfSSL
88
Validity
9-
Not Before: Nov 22 21:28:37 2023 GMT
10-
Not After : Aug 18 21:28:37 2026 GMT
11-
Subject: C = AU, ST = QLD, O = wolfSSL, OU = Testing, CN = wolfssl-dev-sm2, emailAddress = info@wolfssl.com, UID = wolfSSL
9+
Not Before: Feb 18 14:27:26 2026 GMT
10+
Not After : Nov 14 14:27:26 2028 GMT
11+
Subject: C=AU, ST=QLD, O=wolfSSL, OU=Testing, CN=wolfssl-dev-sm2, emailAddress=info@wolfssl.com, UID=wolfSSL
1212
Subject Public Key Info:
1313
Public Key Algorithm: id-ecPublicKey
1414
Public-Key: (256 bit)
@@ -30,23 +30,23 @@ Certificate:
3030
Digital Signature, Certificate Sign, CRL Sign
3131
Signature Algorithm: SM2-with-SM3
3232
Signature Value:
33-
30:44:02:20:0f:c3:2c:36:e3:9f:1c:e9:68:1c:3b:43:18:5b:
34-
c9:8f:e4:fa:dd:33:c1:b8:1c:d3:d4:61:33:f8:37:9d:5a:f4:
35-
02:20:3a:b9:a8:43:80:cf:38:25:e9:64:d8:26:47:9d:50:04:
36-
0c:8a:e8:a2:42:e8:63:dd:53:94:7d:38:6d:52:70:fd
33+
30:45:02:20:1b:ca:50:2d:8d:36:ae:cf:53:63:c7:77:b8:77:
34+
c3:83:61:9f:7f:62:d5:86:5d:30:b8:a7:ac:28:b2:b0:68:e4:
35+
02:21:00:ff:d7:47:b4:ae:d6:b8:d3:8d:b8:5d:b1:44:5e:10:
36+
16:91:e8:1b:06:95:12:b1:aa:42:f0:74:db:f6:ee:80:06
3737
-----BEGIN CERTIFICATE-----
38-
MIICjDCCAjOgAwIBAgIUBns6Xc8iqW1teCsQAVG2TNSCoqEwCgYIKoEcz1UBg3Uw
38+
MIICjTCCAjOgAwIBAgIUWk0ZDFrWeH6Bhuw8kDox+Ay+jA8wCgYIKoEcz1UBg3Uw
3939
gZMxCzAJBgNVBAYTAkFVMQwwCgYDVQQIDANRTEQxEDAOBgNVBAoMB3dvbGZTU0wx
4040
EDAOBgNVBAsMB1Rlc3RpbmcxGDAWBgNVBAMMD3dvbGZzc2wtZGV2LXNtMjEfMB0G
4141
CSqGSIb3DQEJARYQaW5mb0B3b2xmc3NsLmNvbTEXMBUGCgmSJomT8ixkAQEMB3dv
42-
bGZTU0wwHhcNMjMxMTIyMjEyODM3WhcNMjYwODE4MjEyODM3WjCBkzELMAkGA1UE
42+
bGZTU0wwHhcNMjYwMjE4MTQyNzI2WhcNMjgxMTE0MTQyNzI2WjCBkzELMAkGA1UE
4343
BhMCQVUxDDAKBgNVBAgMA1FMRDEQMA4GA1UECgwHd29sZlNTTDEQMA4GA1UECwwH
4444
VGVzdGluZzEYMBYGA1UEAwwPd29sZnNzbC1kZXYtc20yMR8wHQYJKoZIhvcNAQkB
4545
FhBpbmZvQHdvbGZzc2wuY29tMRcwFQYKCZImiZPyLGQBAQwHd29sZlNTTDBZMBMG
4646
ByqGSM49AgEGCCqBHM9VAYItA0IABNjEofELi43EfdzUZbmlVU77rDOrm0OUTEhA
4747
GzPZG8wxwYJWP7DAa5VAUf2IAgGxsJRsBuun2o7ucLblu7Qe57SjYzBhMB0GA1Ud
4848
DgQWBBRul+iYtlu2rocE2xRWZhb0uC2M8jAfBgNVHSMEGDAWgBRul+iYtlu2rocE
4949
2xRWZhb0uC2M8jAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBhjAKBggq
50-
gRzPVQGDdQNHADBEAiAPwyw2458c6WgcO0MYW8mP5PrdM8G4HNPUYTP4N51a9AIg
51-
OrmoQ4DPOCXpZNgmR51QBAyK6KJC6GPdU5R9OG1ScP0=
50+
gRzPVQGDdQNIADBFAiAbylAtjTauz1Njx3e4d8ODYZ9/YtWGXTC4p6wosrBo5AIh
51+
AP/XR7Su1rjTjbhdsUReEBaR6BsGlRKxqkLwdNv27oAG
5252
-----END CERTIFICATE-----

certs/sm2/server-sm2-cert.der

-1 Bytes
Binary file not shown.

certs/sm2/server-sm2-cert.pem

Lines changed: 19 additions & 19 deletions
Original file line numberDiff line numberDiff line change
@@ -3,13 +3,13 @@ Certificate:
33
Version: 3 (0x2)
44
Serial Number: 1 (0x1)
55
Signature Algorithm: SM2-with-SM3
6-
Issuer: C = US, ST = Montana, L = Bozeman, O = wolfSSL_sm2, OU = CA-sm2, CN = www.wolfssl.com, emailAddress = info@wolfssl.com, UID = wolfSSL
6+
Issuer: C=US, ST=Montana, L=Bozeman, O=wolfSSL_sm2, OU=CA-sm2, CN=www.wolfssl.com, emailAddress=info@wolfssl.com, UID=wolfSSL
77
Validity
8-
Not Before: Feb 15 06:23:07 2023 GMT
9-
Not After : Nov 11 06:23:07 2025 GMT
10-
Subject: C = US, ST = Montana, L = Bozeman, O = wolfSSL_sm2, OU = Server-sm2, CN = www.wolfssl.com, emailAddress = info@wolfssl.com, UID = wolfSSL
8+
Not Before: Feb 18 14:27:26 2026 GMT
9+
Not After : Nov 14 14:27:26 2028 GMT
10+
Subject: C=US, ST=Montana, L=Bozeman, O=wolfSSL_sm2, OU=Server-sm2, CN=www.wolfssl.com, emailAddress=info@wolfssl.com, UID=wolfSSL
1111
Subject Public Key Info:
12-
Public Key Algorithm: sm2
12+
Public Key Algorithm: id-ecPublicKey
1313
Public-Key: (256 bit)
1414
pub:
1515
04:94:70:2b:46:e4:5e:0f:41:fb:8f:2d:34:0a:41:
@@ -33,25 +33,25 @@ Certificate:
3333
SSL Server
3434
Signature Algorithm: SM2-with-SM3
3535
Signature Value:
36-
30:45:02:20:1b:ca:94:28:7f:f6:b2:0d:31:43:50:e1:d5:34:
37-
17:dd:af:3a:de:81:06:67:9a:b3:06:22:7e:64:ec:fd:0e:b9:
38-
02:21:00:a1:48:a8:32:d1:05:09:6b:1c:eb:89:12:66:d8:38:
39-
a1:c4:5c:89:09:0f:fd:e9:c0:3b:1d:fb:cd:b5:4c:31:68
36+
30:45:02:20:07:11:e4:64:42:5a:2b:74:1d:7d:bb:81:33:7f:
37+
fd:5c:bd:93:f5:73:09:fc:23:5a:c4:f6:94:fc:4d:6a:da:ee:
38+
02:21:00:fb:f5:72:b6:cc:6c:92:d6:38:68:01:c5:ab:cb:9b:
39+
d7:dc:cc:bb:6f:38:4e:1b:85:7d:d7:9c:a4:ed:b8:29:c8
4040
-----BEGIN CERTIFICATE-----
41-
MIIC2DCCAn6gAwIBAgIBATAKBggqgRzPVQGDdTCBrDELMAkGA1UEBhMCVVMxEDAO
41+
MIIC1zCCAn2gAwIBAgIBATAKBggqgRzPVQGDdTCBrDELMAkGA1UEBhMCVVMxEDAO
4242
BgNVBAgMB01vbnRhbmExEDAOBgNVBAcMB0JvemVtYW4xFDASBgNVBAoMC3dvbGZT
4343
U0xfc20yMQ8wDQYDVQQLDAZDQS1zbTIxGDAWBgNVBAMMD3d3dy53b2xmc3NsLmNv
4444
bTEfMB0GCSqGSIb3DQEJARYQaW5mb0B3b2xmc3NsLmNvbTEXMBUGCgmSJomT8ixk
45-
AQEMB3dvbGZTU0wwHhcNMjMwMjE1MDYyMzA3WhcNMjUxMTExMDYyMzA3WjCBsDEL
45+
AQEMB3dvbGZTU0wwHhcNMjYwMjE4MTQyNzI2WhcNMjgxMTE0MTQyNzI2WjCBsDEL
4646
MAkGA1UEBhMCVVMxEDAOBgNVBAgMB01vbnRhbmExEDAOBgNVBAcMB0JvemVtYW4x
4747
FDASBgNVBAoMC3dvbGZTU0xfc20yMRMwEQYDVQQLDApTZXJ2ZXItc20yMRgwFgYD
4848
VQQDDA93d3cud29sZnNzbC5jb20xHzAdBgkqhkiG9w0BCQEWEGluZm9Ad29sZnNz
49-
bC5jb20xFzAVBgoJkiaJk/IsZAEBDAd3b2xmU1NMMFowFAYIKoEcz1UBgi0GCCqB
50-
HM9VAYItA0IABJRwK0bkXg9B+48tNApBQBle+9QdEaz69ZM3xvqHCPcWHyzOMECd
51-
T6YqCqHWlTPDpgOY5o0FNLCXDN6kx89Tj9GjgYkwgYYwHQYDVR0OBBYEFGeuYP9+
52-
Gw+Vrh+CWfJsVi2T7xcyMB8GA1UdIwQYMBaAFEcKSH67AqhaJlcrGal7YYt/XZlu
53-
MAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgOoMBMGA1UdJQQMMAoGCCsGAQUF
54-
BwMBMBEGCWCGSAGG+EIBAQQEAwIGQDAKBggqgRzPVQGDdQNIADBFAiAbypQof/ay
55-
DTFDUOHVNBfdrzregQZnmrMGIn5k7P0OuQIhAKFIqDLRBQlrHOuJEmbYOKHEXIkJ
56-
D/3pwDsd+821TDFo
49+
bC5jb20xFzAVBgoJkiaJk/IsZAEBDAd3b2xmU1NMMFkwEwYHKoZIzj0CAQYIKoEc
50+
z1UBgi0DQgAElHArRuReD0H7jy00CkFAGV771B0RrPr1kzfG+ocI9xYfLM4wQJ1P
51+
pioKodaVM8OmA5jmjQU0sJcM3qTHz1OP0aOBiTCBhjAdBgNVHQ4EFgQUZ65g/34b
52+
D5WuH4JZ8mxWLZPvFzIwHwYDVR0jBBgwFoAURwpIfrsCqFomVysZqXthi39dmW4w
53+
DAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCA6gwEwYDVR0lBAwwCgYIKwYBBQUH
54+
AwEwEQYJYIZIAYb4QgEBBAQDAgZAMAoGCCqBHM9VAYN1A0gAMEUCIAcR5GRCWit0
55+
HX27gTN//Vy9k/VzCfwjWsT2lPxNatruAiEA+/VytsxsktY4aAHFq8ub19zMu284
56+
ThuFfdecpO24Kcg=
5757
-----END CERTIFICATE-----

0 commit comments

Comments
 (0)