/security/nss/tests/chains/scenarios/anypolicy.cfg

http://github.com/zpao/v8monkey · Config · 109 lines · 92 code · 17 blank · 0 comment · 0 complexity · b72de5b2298d30181996765993f62e45 MD5 · raw file 

    

  1. # ***** BEGIN LICENSE BLOCK *****
    2. 

  2. # Version: MPL 1.1/GPL 2.0/LGPL 2.1
    3. 

  3. #
    4. 

  4. # The contents of this file are subject to the Mozilla Public License Version
    5. 

  5. # 1.1 (the "License"); you may not use this file except in compliance with
    6. 

  6. # the License. You may obtain a copy of the License at
    7. 

  7. # http://www.mozilla.org/MPL/
    8. 

  8. #
    9. 

  9. # Software distributed under the License is distributed on an "AS IS" basis,
    10. 

  10. # WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
    11. 

  11. # for the specific language governing rights and limitations under the
    12. 

  12. # License.
    13. 

  13. #
    14. 

  14. # The Original Code is the Network Security Services (NSS)
    15. 

  15. #
    16. 

  16. # The Initial Developer of the Original Code is Sun Microsystems, Inc.
    17. 

  17. # Portions created by the Initial Developer are Copyright (C) 2009
    18. 

  18. # the Initial Developer. All Rights Reserved.
    19. 

  19. #
    20. 

  20. # Contributor(s):
    21. 

  21. #   Slavomir Katuscak <slavomir.katuscak@sun.com>, Sun Microsystems
    22. 

  22. #
    23. 

  23. # Alternatively, the contents of this file may be used under the terms of
    24. 

  24. # either the GNU General Public License Version 2 or later (the "GPL"), or
    25. 

  25. # the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
    26. 

  26. # in which case the provisions of the GPL or the LGPL are applicable instead
    27. 

  27. # of those above. If you wish to allow use of your version of this file only
    28. 

  28. # under the terms of either the GPL or the LGPL, and not to allow others to
    29. 

  29. # use your version of this file under the terms of the MPL, indicate your
    30. 

  30. # decision by deleting the provisions above and replace them with the notice
    31. 

  31. # and other provisions required by the GPL or the LGPL. If you do not delete
    32. 

  32. # the provisions above, a recipient may use your version of this file under
    33. 

  33. # the terms of any one of the MPL, the GPL or the LGPL.
    34. 

  34. #
    35. 

  35. # ***** END LICENSE BLOCK *****
    36. 

  36. 

  37. scenario AnyPolicy
    38. 

  38. 

  39. entity RootCA
    40. 

  40.   type Root
    41. 

  41. 

  42. entity CA1
    43. 

  43.   type Intermediate
    44. 

  44.   issuer RootCA
    45. 

  45.   policy any
    46. 

  46. 

  47. entity CA2
    48. 

  48.   type Intermediate
    49. 

  49.   issuer CA1
    50. 

  50.   policy OID.1.0
    51. 

  51.   inhibit 0
    52. 

  52. 

  53. entity CA3
    54. 

  54.   type Intermediate
    55. 

  55.   issuer CA1
    56. 

  56.   policy OID.1.0
    57. 

  57. 

  58. entity User1
    59. 

  59.   type EE
    60. 

  60.   issuer CA2
    61. 

  61.   policy OID.1.0
    62. 

  62. 

  63. entity User2
    64. 

  64.   type EE
    65. 

  65.   issuer CA2
    66. 

  66.   policy any
    67. 

  67. 

  68. entity User3
    69. 

  69.   type EE
    70. 

  70.   issuer CA3
    71. 

  71.   policy any
    72. 

  72.  
    73. 

  73. db All
    74. 

  74. 

  75. import RootCA::
    76. 

  76. import CA1:RootCA:
    77. 

  77. import CA2:CA1:
    78. 

  78. import CA3:CA1:
    79. 

  79. 

  80. verify User1:CA2
    81. 

  81.   trust RootCA
    82. 

  82.   policy OID.1.0
    83. 

  83.   result pass
    84. 

  84. 

  85. verify User1:CA2
    86. 

  86.   trust RootCA
    87. 

  87.   policy OID.2.0
    88. 

  88.   result fail
    89. 

  89. 

  90. verify User2:CA2
    91. 

  91.   trust RootCA
    92. 

  92.   policy OID.1.0
    93. 

  93.   result fail
    94. 

  94. 

  95. verify User2:CA2
    96. 

  96.   trust RootCA
    97. 

  97.   policy OID.2.0
    98. 

  98.   result fail
    99. 

  99. 

  100. verify User3:CA3
    101. 

  101.   trust RootCA
    102. 

  102.   policy OID.1.0
    103. 

  103.   result pass
    104. 

  104. 

  105. verify User3:CA3
    106. 

  106.   trust RootCA
    107. 

  107.   policy OID.2.0
    108. 

  108.   result fail
    109.