michael@0: # This Source Code Form is subject to the terms of the Mozilla Public
michael@0: # License, v. 2.0. If a copy of the MPL was not distributed with this
michael@0: # file, You can obtain one at http://mozilla.org/MPL/2.0/.
michael@0: 
michael@0: scenario AnyPolicy
michael@0: 
michael@0: entity RootCA
michael@0:   type Root
michael@0: 
michael@0: entity CA1
michael@0:   type Intermediate
michael@0:   issuer RootCA
michael@0:   policy any
michael@0: 
michael@0: entity CA2
michael@0:   type Intermediate
michael@0:   issuer CA1
michael@0:   policy OID.1.0
michael@0:   inhibit 0
michael@0: 
michael@0: entity CA3
michael@0:   type Intermediate
michael@0:   issuer CA1
michael@0:   policy OID.1.0
michael@0: 
michael@0: entity User1
michael@0:   type EE
michael@0:   issuer CA2
michael@0:   policy OID.1.0
michael@0: 
michael@0: entity User2
michael@0:   type EE
michael@0:   issuer CA2
michael@0:   policy any
michael@0: 
michael@0: entity User3
michael@0:   type EE
michael@0:   issuer CA3
michael@0:   policy any
michael@0:  
michael@0: db All
michael@0: 
michael@0: import RootCA::
michael@0: import CA1:RootCA:
michael@0: import CA2:CA1:
michael@0: import CA3:CA1:
michael@0: 
michael@0: verify User1:CA2
michael@0:   trust RootCA
michael@0:   policy OID.1.0
michael@0:   result pass
michael@0: 
michael@0: verify User1:CA2
michael@0:   trust RootCA
michael@0:   policy OID.2.0
michael@0:   result fail
michael@0: 
michael@0: verify User2:CA2
michael@0:   trust RootCA
michael@0:   policy OID.1.0
michael@0:   result fail
michael@0: 
michael@0: verify User2:CA2
michael@0:   trust RootCA
michael@0:   policy OID.2.0
michael@0:   result fail
michael@0: 
michael@0: verify User3:CA3
michael@0:   trust RootCA
michael@0:   policy OID.1.0
michael@0:   result pass
michael@0: 
michael@0: verify User3:CA3
michael@0:   trust RootCA
michael@0:   policy OID.2.0
michael@0:   result fail
michael@0: