test: allowedAttributeAssignments X.509v3 extension

author Jonathan M. Wilbur <jonathan@wilbur.space>

Fri, 13 Dec 2024 07:00:58 +0000 (07:00 +0000)

committer Tomas Mraz <tomas@openssl.org>

Thu, 2 Jan 2025 19:06:59 +0000 (20:06 +0100)
author Jonathan M. Wilbur <jonathan@wilbur.space>
Fri, 13 Dec 2024 07:00:58 +0000 (07:00 +0000)
committer Tomas Mraz <tomas@openssl.org>
Thu, 2 Jan 2025 19:06:59 +0000 (20:06 +0100)
diff --git a/test/certs/ext-allowedAttributeAssignments.pem b/test/certs/ext-allowedAttributeAssignments.pem

new file mode 100644 (file)

index 0000000..e5d95d1
--- /dev/null
+++ b/test/certs/ext-allowedAttributeAssignments.pem
@@ -0,0 +1,12 @@
+-----BEGIN CERTIFICATE-----
+MIIBtzCCAaOgAwIBAgIDAQIDMAsGCSqGSIb3DQEBBTAAMCIYDzIwMjEwODMxMDIz
+NDU4WhgPMjAyMTA4MzEwMjM0NThaMAAwggEgMAsGCSqGSIb3DQEBAQOCAQ8AMIIB
+CgKCAQEAtnjLm1ts1hC4fNNt3UnQD9y73bDXgioTyWYSI3ca/KNfuTydjFTEYAmq
+nuGrBOUfgbmH3PRQ0AmpqljgWTb3d3K8H4UFvDWQTPSS21IMjm8oqd19nE5GxWir
+Gu0oDRzhWLHe1RZ7ZrohCPg/1Ocsy47QZuK2laFB0rEmrRWBmEYbDl3/wxf5XfqI
+qpOynJB02thXrTCcTM7Rz1FqCFt/ZVZB5hKY2S+CTdE9OIVKlr4WHMfuvUYeOj06
+GkwLFJHNv2tU+tovI3mYRxUuY4UupkS3MC+Otey7XKm1P+INjWWoegm6iCAt3Vus
+pVz+6pU2xgl3nrAVMQHB4fReQPH0pQIDAQABoz4wPDA6BgNVHUMEMzExMC+gBYAD
+VQQDoSaBJGpvbmF0aGFuLndpbGJ1ckB3aWxkYm9hcnNvZnR3YXJlLmNvbTALBgkq
+hkiG9w0BAQUDAQA=
+-----END CERTIFICATE-----
diff --git a/test/recipes/25-test_x509.t b/test/recipes/25-test_x509.t

index 0687c81ca9c22673cd37f41dcb04f680e84fd6a7..7117e3381ee3062dca95fca5a170a2f68073d70d 100644 (file)
--- a/test/recipes/25-test_x509.t
+++ b/test/recipes/25-test_x509.t
@@ -16,7 +16,7 @@ use OpenSSL::Test qw/:DEFAULT srctop_file/;
  
  setup("test_x509");
  
-plan tests => 124;
+plan tests => 126;
  
  # Prevent MSys2 filename munging for arguments that look like file paths but
  # aren't
@@ -400,6 +400,13 @@ cert_contains($attr_map_cert,
  cert_contains($attr_map_cert,
                "commonName:asdf == localityName:03:3E",
                1, 'X.509 Attribute Mappings');
+my $aaa_cert = srctop_file(@certs, "ext-allowedAttributeAssignments.pem");
+cert_contains($aaa_cert,
+              "Attribute Type: commonName",
+              1, 'X.509 Allowed Attribute Assignments');
+cert_contains($aaa_cert,
+              "Holder Domain: email:jonathan.wilbur",
+              1, 'X.509 Allowed Attribute Assignments');
  
  sub test_errors { # actually tests diagnostics of OSSL_STORE
      my ($expected, $cert, @opts) = @_;
author	Jonathan M. Wilbur <jonathan@wilbur.space>
	Fri, 13 Dec 2024 07:00:58 +0000 (07:00 +0000)
committer	Tomas Mraz <tomas@openssl.org>
	Thu, 2 Jan 2025 19:06:59 +0000 (20:06 +0100)
test/certs/ext-allowedAttributeAssignments.pem	[new file with mode: 0644]	patch \| blob
test/recipes/25-test_x509.t		patch \| blob \| blame \| history