Add a Certificate Policies Test

author Matt Caswell <matt@openssl.org>

Tue, 7 Mar 2023 17:07:57 +0000 (17:07 +0000)

committer Tomas Mraz <tomas@openssl.org>

Tue, 28 Mar 2023 12:09:38 +0000 (14:09 +0200)
author Matt Caswell <matt@openssl.org>
Tue, 7 Mar 2023 17:07:57 +0000 (17:07 +0000)
committer Tomas Mraz <tomas@openssl.org>
Tue, 28 Mar 2023 12:09:38 +0000 (14:09 +0200)
diff --git a/test/recipes/25-test_verify.t b/test/recipes/25-test_verify.t

index ffa48ed20bbfb4c0edb4fdd6265ac264a41f7117..e7e352df0bf5999350b005f3587cad339aa9d1bd 100644 (file)
--- a/test/recipes/25-test_verify.t
+++ b/test/recipes/25-test_verify.t
@@ -27,7 +27,7 @@ sub verify {
      run(app([@args]));
  }
  
-plan tests => 146;
+plan tests => 148;
  
  # Canonical success
  ok(verify("ee-cert", "sslserver", ["root-cert"], ["ca-cert"]),
@@ -409,3 +409,14 @@ SKIP: {
         "ED25519 signature");
  
  }
+
+# Certificate Policies
+ok(verify("ee-cert-policies", "sslserver", ["root-cert"], ["ca-pol-cert"],
+          "-policy_check", "-policy", "1.3.6.1.4.1.16604.998855.1",
+          "-explicit_policy"),
+   "Certificate policy");
+
+ok(!verify("ee-cert-policies-bad", "sslserver", ["root-cert"], ["ca-pol-cert"],
+           "-policy_check", "-policy", "1.3.6.1.4.1.16604.998855.1",
+           "-explicit_policy"),
+   "Bad certificate policy");
author	Matt Caswell <matt@openssl.org>
	Tue, 7 Mar 2023 17:07:57 +0000 (17:07 +0000)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 28 Mar 2023 12:09:38 +0000 (14:09 +0200)