SecurityTests/clxutils/certcrl/testSubjects/miscPolicies/miscPolicies.scr

   1 #
   2 # miscellaneous policies tested here.
   3 #
   4 globals
   5 allowUnverified = true
   6 crlNetFetchEnable = false
   7 certNetFetchEnable = false
   8 useSystemAnchors = false
   9 end
  10
  11 test = "Resource signing"
  12 policy = resourceSign
  13 cert = resourceSignLeaf.cer
  14 root = miscPoliciesRoot.cer
  15 end
  16
  17 test = "Resource signing, no EKU"
  18 policy = resourceSign
  19 cert = noEKU.cer
  20 root = miscPoliciesRoot.cer
  21 error = CSSMERR_APPLETP_INVALID_EXTENDED_KEY_USAGE
  22 end
  23