Lines Matching full:verify
69 trace "$tid: key type $t verify with hash $h"
70 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
76 trace "$tid: key type $t verify with limited namespace"
79 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
87 ${SSHKEYGEN} -q -Y verify -s $sigfile -n $sig_namespace \
97 trace "$tid: key type $t verify with bad signers"
99 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
105 trace "$tid: key type $t verify with wrong key"
107 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
113 trace "$tid: key type $t verify with wrong data"
115 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
121 trace "$tid: key type $t verify with wrong principal"
123 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
129 trace "$tid: key type $t verify with wrong namespace"
131 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n COWS_COWS_COWS \
137 trace "$tid: key type $t verify with excluded namespace"
140 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
150 trace "$tid: key type $t verify with valid lifespan"
151 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
157 trace "$tid: key type $t verify with not-yet-valid lifespan"
158 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
164 trace "$tid: key type $t verify with expired lifespan"
165 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
171 trace "$tid: key type $t verify with expired lifespan (now)"
172 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
202 trace "$tid: key type $t verify with revoked key"
206 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
213 trace "$tid: key type $t verify with unrevoked key"
216 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
220 fail "couldn't verify signature for $t key, but key not in revoked_keys"
273 ${SSHKEYGEN} -vvv -Y verify -s $sigfile_agent -n $sig_namespace \
294 fail "succeeded find-principals for $t verify-time outside of validity"
300 fail "failed find-principals for $t verify-time within first span"
306 fail "failed find-principals for $t verify-time within both spans"
312 fail "failed find-principals for $t verify-time within second span"
314 # verify outside of any validity lifespan
315 trace "$tid: key type $t verify outside multiple validities"
316 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
320 fail "succeeded verify for $t verify-time outside of validity"
321 # verify matching only the first lifespan
322 trace "$tid: key type $t verify matching one validity (1st)"
323 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
327 fail "failed verify for $t verify-time within first span"
328 # verify matching both lifespans
329 trace "$tid: key type $t verify matching two validities"
330 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
334 fail "failed verify for $t verify-time within both spans"
335 # verify matching only the second lifespan
336 trace "$tid: key type $t verify matching one validity (2nd)"
337 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
341 fail "failed verify for $t verify-time within second span"
378 trace "$tid: key type $t verify cert good CA"
381 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
405 # verify CA with wildcard principal
406 trace "$tid: key type $t verify cert good wildcard CA"
407 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
414 trace "$tid: key type $t verify signing key listed as CA"
417 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
423 trace "$tid: key type $t verify key not marked as CA"
425 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
431 trace "$tid: key type $t verify cert with wrong principal"
434 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
440 trace "$tid: key type $t verify cert with revoked CA"
443 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
449 # Set lifespan of CA key and verify signed user certs behave accordingly
455 trace "$tid: key type $t verify cert valid CA lifespan"
456 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
462 trace "$tid: key type $t verify cert valid CA lifespan, not-yet-valid cert"
463 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
469 trace "$tid: key type $t verify cert valid CA lifespan, expired cert"
470 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
476 trace "$tid: key type $t verify cert CA not-yet-valid"
477 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
483 trace "$tid: key type $t verify cert CA expired"
484 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
490 trace "$tid: key type $t verify cert CA expired (now)"
491 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \
497 trace "$tid: key type $t verify CA/cert lifespan mismatch"
502 ${SSHKEYGEN} -vvv -Y verify -s $sigfile -n $sig_namespace \