Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(81)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/data/verify_certificate_chain_unittest/intermediate-restricts-eku-ok/generate-chains.py

Issue 2805213004: Refactor how net/data/verify_certificate_chain_unittest/* (Closed)
Patch Set: fix android Created 3 years, 7 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« net/data/verify_certificate_chain_unittest/generate-all.sh ('K') | « net/data/verify_certificate_chain_unittest/intermediate-restricts-eku-ok/chain.pem ('k') | net/data/verify_certificate_chain_unittest/intermediate-restricts-eku-ok/keys/Intermediate.key » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 #!/usr/bin/python 1 #!/usr/bin/python
2 # Copyright (c) 2017 The Chromium Authors. All rights reserved. 2 # Copyright (c) 2017 The Chromium Authors. All rights reserved.
3 # Use of this source code is governed by a BSD-style license that can be 3 # Use of this source code is governed by a BSD-style license that can be
4 # found in the LICENSE file. 4 # found in the LICENSE file.
5 5
6 """Certificate chain with 1 intermediate and a trusted root. The intermediate 6 """Certificate chain with 1 intermediate and a trusted root. The intermediate
7 restricts the EKU to serverAuth, and the target has serverAuth + 7 restricts the EKU to serverAuth, and the target has serverAuth +
8 clientAuth. Verification is expected to succeed as this is consistent with 8 clientAuth. Verification is expected to succeed as this is consistent with
9 the requested key purpose.""" 9 the requested key purpose."""
10 10
11 import sys
12 sys.path += ['..']
13
11 import common 14 import common
12 15
13 # Self-signed root certificate (used as trust anchor). 16 # Self-signed root certificate (used as trust anchor).
14 root = common.create_self_signed_root_certificate('Root') 17 root = common.create_self_signed_root_certificate('Root')
15 18
16 # Intermediate certificate. 19 # Intermediate certificate.
17 intermediate = common.create_intermediate_certificate('Intermediate', root) 20 intermediate = common.create_intermediate_certificate('Intermediate', root)
18 intermediate.get_extensions().set_property('extendedKeyUsage', 21 intermediate.get_extensions().set_property('extendedKeyUsage',
19 'serverAuth') 22 'serverAuth')
20 23
21 # Target certificate. 24 # Target certificate.
22 target = common.create_end_entity_certificate('Target', intermediate) 25 target = common.create_end_entity_certificate('Target', intermediate)
23 target.get_extensions().set_property('extendedKeyUsage', 26 target.get_extensions().set_property('extendedKeyUsage',
24 'serverAuth,clientAuth') 27 'serverAuth,clientAuth')
25 28
26 chain = [target, intermediate] 29 chain = [target, intermediate, root]
27 trusted = common.TrustAnchor(root, constrained=False) 30 common.write_chain(__doc__, chain, 'chain.pem')
28 time = common.DEFAULT_TIME
29 key_purpose = common.KEY_PURPOSE_SERVER_AUTH
30 verify_result = True
31 errors = None
32
33 common.write_test_file(__doc__, chain, trusted, time, key_purpose,
34 verify_result, errors)
OLDNEW
« net/data/verify_certificate_chain_unittest/generate-all.sh ('K') | « net/data/verify_certificate_chain_unittest/intermediate-restricts-eku-ok/chain.pem ('k') | net/data/verify_certificate_chain_unittest/intermediate-restricts-eku-ok/keys/Intermediate.key » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698