/security/nss/tests/chains/scenarios/bridgewithpolicyextensionandmapping.cfg

http://github.com/zpao/v8monkey · Config · 219 lines · 191 code · 28 blank · 0 comment · 0 complexity · 0620d2d1abcdfe750b0afc75153df125 MD5 · raw file 

    

  1. # ***** BEGIN LICENSE BLOCK *****
    2. 

  2. # Version: MPL 1.1/GPL 2.0/LGPL 2.1
    3. 

  3. #
    4. 

  4. # The contents of this file are subject to the Mozilla Public License Version
    5. 

  5. # 1.1 (the "License"); you may not use this file except in compliance with
    6. 

  6. # the License. You may obtain a copy of the License at
    7. 

  7. # http://www.mozilla.org/MPL/
    8. 

  8. #
    9. 

  9. # Software distributed under the License is distributed on an "AS IS" basis,
    10. 

  10. # WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
    11. 

  11. # for the specific language governing rights and limitations under the
    12. 

  12. # License.
    13. 

  13. #
    14. 

  14. # The Original Code is the Network Security Services (NSS)
    15. 

  15. #
    16. 

  16. # The Initial Developer of the Original Code is Sun Microsystems, Inc.
    17. 

  17. # Portions created by the Initial Developer are Copyright (C) 2009
    18. 

  18. # the Initial Developer. All Rights Reserved.
    19. 

  19. #
    20. 

  20. # Contributor(s):
    21. 

  21. #   Slavomir Katuscak <slavomir.katuscak@sun.com>, Sun Microsystems
    22. 

  22. #
    23. 

  23. # Alternatively, the contents of this file may be used under the terms of
    24. 

  24. # either the GNU General Public License Version 2 or later (the "GPL"), or
    25. 

  25. # the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
    26. 

  26. # in which case the provisions of the GPL or the LGPL are applicable instead
    27. 

  27. # of those above. If you wish to allow use of your version of this file only
    28. 

  28. # under the terms of either the GPL or the LGPL, and not to allow others to
    29. 

  29. # use your version of this file under the terms of the MPL, indicate your
    30. 

  30. # decision by deleting the provisions above and replace them with the notice
    31. 

  31. # and other provisions required by the GPL or the LGPL. If you do not delete
    32. 

  32. # the provisions above, a recipient may use your version of this file under
    33. 

  33. # the terms of any one of the MPL, the GPL or the LGPL.
    34. 

  34. #
    35. 

  35. # ***** END LICENSE BLOCK *****
    36. 

  36. 

  37. scenario BridgeWithPolicyExtensionAndMapping
    38. 

  38. 

  39. entity Army
    40. 

  40.   type Root
    41. 

  41. 

  42. entity Navy
    43. 

  43.   type Root
    44. 

  44. 

  45. entity CAArmy
    46. 

  46.   type Intermediate
    47. 

  47.   issuer Army
    48. 

  48.     policy OID.1.0
    49. 

  49.     policy OID.1.1
    50. 

  50. 

  51. entity CANavy
    52. 

  52.   type Intermediate
    53. 

  53.   issuer Navy
    54. 

  54.     policy OID.2.0
    55. 

  55.     policy OID.2.1
    56. 

  56. 

  57. entity Bridge
    58. 

  58.   type Bridge
    59. 

  59.   issuer CAArmy
    60. 

  60.     policy OID.1.0
    61. 

  61.     policy OID.1.1
    62. 

  62.     mapping OID.1.1:OID.2.1
    63. 

  63.   issuer CANavy
    64. 

  64.     policy OID.2.0
    65. 

  65.     policy OID.2.1
    66. 

  66.     mapping OID.2.1:OID.1.1
    67. 

  67. 

  68. entity CA1
    69. 

  69.   type Intermediate
    70. 

  70.   issuer Bridge
    71. 

  71.     policy OID.1.1
    72. 

  72.     policy OID.2.1
    73. 

  73. 

  74. entity CA2
    75. 

  75.   type Intermediate
    76. 

  76.   issuer Bridge
    77. 

  77.     policy OID.1.0
    78. 

  78.     policy OID.2.0
    79. 

  79. 

  80. entity EE1
    81. 

  81.   type EE
    82. 

  82.   issuer CA1
    83. 

  83.     policy OID.2.1
    84. 

  84. 

  85. entity EE2
    86. 

  86.   type EE
    87. 

  87.   issuer CA2
    88. 

  88.     policy OID.2.0
    89. 

  89. 

  90. testdb
    91. 

  91. 

  92. verify EE1:CA1
    93. 

  93.   cert CA1:Bridge
    94. 

  94.   cert Bridge:CAArmy
    95. 

  95.   cert CAArmy:Army
    96. 

  96.   trust Army:
    97. 

  97.   policy OID.1.0
    98. 

  98.   result fail
    99. 

  99. 

  100. verify EE1:CA1
    101. 

  101.   cert CA1:Bridge
    102. 

  102.   cert Bridge:CAArmy
    103. 

  103.   cert CAArmy:Army
    104. 

  104.   trust Army:
    105. 

  105.   policy OID.1.1
    106. 

  106.   result pass
    107. 

  107. 

  108. verify EE1:CA1
    109. 

  109.   cert CA1:Bridge
    110. 

  110.   cert Bridge:CAArmy
    111. 

  111.   cert CAArmy:Army
    112. 

  112.   trust Army:
    113. 

  113.   policy OID.2.0
    114. 

  114.   result fail
    115. 

  115. 

  116. verify EE1:CA1
    117. 

  117.   cert CA1:Bridge
    118. 

  118.   cert Bridge:CAArmy
    119. 

  119.   cert CAArmy:Army
    120. 

  120.   trust Army:
    121. 

  121.   policy OID.2.1
    122. 

  122.   result fail
    123. 

  123. 

  124. verify EE1:CA1
    125. 

  125.   cert CA1:Bridge
    126. 

  126.   cert Bridge:CANavy
    127. 

  127.   cert CANavy:Navy
    128. 

  128.   trust Navy:
    129. 

  129.   policy OID.1.0
    130. 

  130.   result fail
    131. 

  131. 

  132. verify EE1:CA1
    133. 

  133.   cert CA1:Bridge
    134. 

  134.   cert Bridge:CANavy
    135. 

  135.   cert CANavy:Navy
    136. 

  136.   trust Navy:
    137. 

  137.   policy OID.1.1
    138. 

  138.   result fail
    139. 

  139. 

  140. verify EE1:CA1
    141. 

  141.   cert CA1:Bridge
    142. 

  142.   cert Bridge:CANavy
    143. 

  143.   cert CANavy:Navy
    144. 

  144.   trust Navy:
    145. 

  145.   policy OID.2.0
    146. 

  146.   result fail
    147. 

  147. 

  148. verify EE1:CA1
    149. 

  149.   cert CA1:Bridge
    150. 

  150.   cert Bridge:CANavy
    151. 

  151.   cert CANavy:Navy
    152. 

  152.   trust Navy:
    153. 

  153.   policy OID.2.1
    154. 

  154.   result fail
    155. 

  155. 

  156. verify EE2:CA2
    157. 

  157.   cert CA2:Bridge
    158. 

  158.   cert Bridge:CANavy
    159. 

  159.   cert CANavy:Navy
    160. 

  160.   trust Navy:
    161. 

  161.   policy OID.1.0
    162. 

  162.   result fail
    163. 

  163. 

  164. verify EE2:CA2
    165. 

  165.   cert CA2:Bridge
    166. 

  166.   cert Bridge:CANavy
    167. 

  167.   cert CANavy:Navy
    168. 

  168.   trust Navy:
    169. 

  169.   policy OID.1.1
    170. 

  170.   result fail
    171. 

  171. 

  172. verify EE2:CA2
    173. 

  173.   cert CA2:Bridge
    174. 

  174.   cert Bridge:CANavy
    175. 

  175.   cert CANavy:Navy
    176. 

  176.   trust Navy:
    177. 

  177.   policy OID.2.0
    178. 

  178.   result pass
    179. 

  179. 

  180. verify EE2:CA2
    181. 

  181.   cert CA2:Bridge
    182. 

  182.   cert Bridge:CANavy
    183. 

  183.   cert CANavy:Navy
    184. 

  184.   trust Navy:
    185. 

  185.   policy OID.2.1
    186. 

  186.   result fail
    187. 

  187. 

  188. verify EE2:CA2
    189. 

  189.   cert CA2:Bridge
    190. 

  190.   cert Bridge:CAArmy
    191. 

  191.   cert CAArmy:Army
    192. 

  192.   trust Army:
    193. 

  193.   policy OID.1.0
    194. 

  194.   result fail
    195. 

  195. 

  196. verify EE2:CA2
    197. 

  197.   cert CA2:Bridge
    198. 

  198.   cert Bridge:CAArmy
    199. 

  199.   cert CAArmy:Army
    200. 

  200.   trust Army:
    201. 

  201.   policy OID.1.1
    202. 

  202.   result fail
    203. 

  203. 

  204. verify EE2:CA2
    205. 

  205.   cert CA2:Bridge
    206. 

  206.   cert Bridge:CAArmy
    207. 

  207.   cert CAArmy:Army
    208. 

  208.   trust Army:
    209. 

  209.   policy OID.2.0
    210. 

  210.   result fail
    211. 

  211. 

  212. verify EE2:CA2
    213. 

  213.   cert CA2:Bridge
    214. 

  214.   cert Bridge:CAArmy
    215. 

  215.   cert CAArmy:Army
    216. 

  216.   trust Army:
    217. 

  217.   policy OID.2.1
    218. 

  218.   result fail
    219.