security/nss/tests/chains/scenarios/ipsec.cfg
author J.C. Jones <jc@mozilla.com>
Wed, 14 Nov 2018 19:00:17 +0000
changeset 502930 95b2486e8c545fcd43cea96e84556d0267e94104
child 531865 e68228c66c551c0e34b6e17454cd6909f910ef22
permissions -rw-r--r--
Bug 1501587 - land NSS aa7940a0d822 UPGRADE_NSS_RELEASE, r=me

# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.

scenario IPsec

entity Root
  type Root

entity CA1
  type Intermediate
  issuer Root 

entity NoKU
  type EE
  issuer CA1

entity DigSig
  type EE
  issuer CA1
    ku digitalSignature

entity NonRep
  type EE
  issuer CA1
    ku nonRepudiation

entity DigSigNonRepAndExtra
  type EE
  issuer CA1
    ku digitalSignature,nonRepudiation,keyEncipherment,dataEncipherment,keyAgreement

entity NoMatch
  type EE
  issuer CA1
    ku keyEncipherment,dataEncipherment,keyAgreement

db All

import Root::C,,
import CA1:Root:

verify NoKU:CA1
  usage 12
  result pass

verify DigSig:CA1
  usage 12
  result pass

verify NonRep:CA1
  usage 12
  result pass

verify DigSigNonRepAndExtra:CA1
  usage 12
  result pass

verify NoMatch:CA1
  usage 12
  result fail