SecurityTests/clxutils/certcrl/testSubjects/expiredCerts/one.scr

   1 #
   2 # test handling of expired certs, Radar 3622125.
   3 #
   4
   5 globals
   6 allowUnverified = true
   7 crlNetFetchEnable = false
   8 certNetFetchEnable = false
   9 useSystemAnchors = false
  10 end
  11
  12 #
  13 # Verify recovery with both good and expired CA in inputs AND DLDB
  14 #
  15 test = "Expired and good CA and root in both inputs and DLDBs"
  16 cert = ecGoodLeaf.cer
  17 cert = ecExpiredCA.cer
  18 cert = ecExpiredRoot.cer
  19 # throw this in too!
  20 root = ecExpiredRoot.cer
  21 root = ecGoodRoot.cer
  22 certDb = expiredCA.keychain
  23 certDb = expiredRoot.keychain
  24 certDb = goodCA.keychain
  25 end