diff options
author | Jonathan M. Wilbur <jonathan@wilbur.space> | 2024-06-24 20:23:23 +0000 |
---|---|---|
committer | Tomas Mraz <tomas@openssl.org> | 2024-06-26 15:00:27 +0200 |
commit | b76a6c26a254b4cc428275fc0ced56759dd5088a (patch) | |
tree | 8f8561798d3fa7010c6becb7968241a68083f22a /test/recipes | |
parent | 2b735fe2195938ea6cafbef37c8bcf8a33b04c4b (diff) | |
download | openssl-b76a6c26a254b4cc428275fc0ced56759dd5088a.zip openssl-b76a6c26a254b4cc428275fc0ced56759dd5088a.tar.gz openssl-b76a6c26a254b4cc428275fc0ced56759dd5088a.tar.bz2 |
test: add tests for acceptable policies exts
Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24663)
Diffstat (limited to 'test/recipes')
-rw-r--r-- | test/recipes/25-test_x509.t | 26 |
1 files changed, 25 insertions, 1 deletions
diff --git a/test/recipes/25-test_x509.t b/test/recipes/25-test_x509.t index 579f902..22379ec 100644 --- a/test/recipes/25-test_x509.t +++ b/test/recipes/25-test_x509.t @@ -16,7 +16,7 @@ use OpenSSL::Test qw/:DEFAULT srctop_file/; setup("test_x509"); -plan tests => 82; +plan tests => 88; # Prevent MSys2 filename munging for arguments that look like file paths but # aren't @@ -245,6 +245,30 @@ cert_contains($ass_info_cert, "localityName", 1, 'X509v3 Associated Information'); +my $acc_cert_pol = srctop_file(@certs, "ext-acceptableCertPolicies.pem"); +cert_contains($acc_cert_pol, + "X509v3 Acceptable Certification Policies", + 1, 'X509v3 Acceptable Certification Policies'); +# Yes, I know these OIDs make no sense in a policies extension. It's just a test. +cert_contains($acc_cert_pol, + "organizationalUnitName", + 1, 'X509v3 Acceptable Certification Policies'); +cert_contains($acc_cert_pol, + "description", + 1, 'X509v3 Acceptable Certification Policies'); + +my $acc_priv_pol = srctop_file(@certs, "ext-acceptablePrivilegePolicies.pem"); +cert_contains($acc_priv_pol, + "X509v3 Acceptable Privilege Policies", + 1, 'X509v3 Acceptable Privilege Policies'); +# Yes, I know these OIDs make no sense in a policies extension. It's just a test. +cert_contains($acc_priv_pol, + "commonName", + 1, 'X509v3 Acceptable Certification Policies'); +cert_contains($acc_priv_pol, + "organizationName", + 1, 'X509v3 Acceptable Certification Policies'); + sub test_errors { # actually tests diagnostics of OSSL_STORE my ($expected, $cert, @opts) = @_; my $infile = srctop_file(@certs, $cert); |