| OLD | NEW | 
|---|
| (Empty) |  | 
|  | 1 #!/usr/bin/python | 
|  | 2 # Copyright (c) 2015 The Chromium Authors. All rights reserved. | 
|  | 3 # Use of this source code is governed by a BSD-style license that can be | 
|  | 4 # found in the LICENSE file. | 
|  | 5 | 
|  | 6 """Certificate chain with 1 intermediary, a trusted root, and a target | 
|  | 7 certificate that is not a CA, and yet has the keyCertSign bit set. Verification | 
|  | 8 is expected to fail, since keyCertSign should only be asserted when CA is | 
|  | 9 true.""" | 
|  | 10 | 
|  | 11 import common | 
|  | 12 | 
|  | 13 # Self-signed root certificate (part of trust store). | 
|  | 14 root = common.create_self_signed_root_certificate('Root') | 
|  | 15 | 
|  | 16 # Intermediary certificate. | 
|  | 17 intermediary = common.create_intermediary_certificate('Intermediary', root) | 
|  | 18 | 
|  | 19 # Target certificate (end entity but has keyCertSign bit set). | 
|  | 20 target = common.create_end_entity_certificate('Target', intermediary) | 
|  | 21 target.get_extensions().set_property('keyUsage', | 
|  | 22     'critical,digitalSignature,keyEncipherment,keyCertSign') | 
|  | 23 | 
|  | 24 | 
|  | 25 chain = [target, intermediary] | 
|  | 26 trusted = [root] | 
|  | 27 time = common.DEFAULT_TIME | 
|  | 28 verify_result = False | 
|  | 29 | 
|  | 30 common.write_test_file(__doc__, chain, trusted, time, verify_result) | 
| OLD | NEW | 
|---|