Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(132)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-digitalsignature.py

Issue 2813043002: Add tests for keyUsage to the built-in cert verifier. (Closed)
Patch Set: rebase and add test files for ios Created 3 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-decipheronly.py ('k') | net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-keyagreement.py » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-digitalsignature.py
diff --git a/net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-digitalsignature.py b/net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-digitalsignature.py
new file mode 100755
index 0000000000000000000000000000000000000000..354b9b2a79ca89d25c2c73b964d9112b87a58e7b
--- /dev/null
+++ b/net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-digitalsignature.py
@@ -0,0 +1,33 @@
+#!/usr/bin/python
+# Copyright (c) 2017 The Chromium Authors. All rights reserved.
+# Use of this source code is governed by a BSD-style license that can be
+# found in the LICENSE file.
+
+"""Certificate chain with 1 intermediate, a trusted root, and a target
+certificate for serverAuth that has only digitalSignature."""
+
+import common
+
+# Self-signed root certificate (used as trust anchor).
+root = common.create_self_signed_root_certificate('Root')
+
+# Intermediate certificate.
+intermediate = common.create_intermediate_certificate('Intermediate', root)
+
+# Target certificate.
+target = common.create_end_entity_certificate('Target', intermediate)
+target.set_key(common.get_or_generate_rsa_key(
+ 2048, common.create_key_path(target.name)))
+target.get_extensions().set_property('extendedKeyUsage', 'serverAuth')
+target.get_extensions().set_property('keyUsage', 'critical,digitalSignature')
+
+
+chain = [target, intermediate]
+trusted = common.TrustAnchor(root, constrained=False)
+time = common.DEFAULT_TIME
+key_purpose = common.KEY_PURPOSE_SERVER_AUTH
+verify_result = True
+errors = None
+
+common.write_test_file(__doc__, chain, trusted, time, key_purpose,
+ verify_result, errors)
« no previous file with comments | « net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-decipheronly.py ('k') | net/data/verify_certificate_chain_unittest/generate-serverauth-rsa-ku-keyagreement.py » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698