michael@0: # This Source Code Form is subject to the terms of the Mozilla Public michael@0: # License, v. 2.0. If a copy of the MPL was not distributed with this michael@0: # file, You can obtain one at http://mozilla.org/MPL/2.0/. michael@0: michael@0: scenario BridgeWithPolicyExtensionAndMapping michael@0: michael@0: entity Army michael@0: type Root michael@0: michael@0: entity Navy michael@0: type Root michael@0: michael@0: entity CAArmy michael@0: type Intermediate michael@0: issuer Army michael@0: policy OID.1.0 michael@0: policy OID.1.1 michael@0: michael@0: entity CANavy michael@0: type Intermediate michael@0: issuer Navy michael@0: policy OID.2.0 michael@0: policy OID.2.1 michael@0: michael@0: entity Bridge michael@0: type Bridge michael@0: issuer CAArmy michael@0: policy OID.1.0 michael@0: policy OID.1.1 michael@0: mapping OID.1.1:OID.2.1 michael@0: issuer CANavy michael@0: policy OID.2.0 michael@0: policy OID.2.1 michael@0: mapping OID.2.1:OID.1.1 michael@0: michael@0: entity CA1 michael@0: type Intermediate michael@0: issuer Bridge michael@0: policy OID.1.1 michael@0: policy OID.2.1 michael@0: michael@0: entity CA2 michael@0: type Intermediate michael@0: issuer Bridge michael@0: policy OID.1.0 michael@0: policy OID.2.0 michael@0: michael@0: entity EE1 michael@0: type EE michael@0: issuer CA1 michael@0: policy OID.2.1 michael@0: michael@0: entity EE2 michael@0: type EE michael@0: issuer CA2 michael@0: policy OID.2.0 michael@0: michael@0: testdb michael@0: michael@0: verify EE1:CA1 michael@0: cert CA1:Bridge michael@0: cert Bridge:CAArmy michael@0: cert CAArmy:Army michael@0: trust Army: michael@0: policy OID.1.0 michael@0: result fail michael@0: michael@0: verify EE1:CA1 michael@0: cert CA1:Bridge michael@0: cert Bridge:CAArmy michael@0: cert CAArmy:Army michael@0: trust Army: michael@0: policy OID.1.1 michael@0: result pass michael@0: michael@0: verify EE1:CA1 michael@0: cert CA1:Bridge michael@0: cert Bridge:CAArmy michael@0: cert CAArmy:Army michael@0: trust Army: michael@0: policy OID.2.0 michael@0: result fail michael@0: michael@0: verify EE1:CA1 michael@0: cert CA1:Bridge michael@0: cert Bridge:CAArmy michael@0: cert CAArmy:Army michael@0: trust Army: michael@0: policy OID.2.1 michael@0: result fail michael@0: michael@0: verify EE1:CA1 michael@0: cert CA1:Bridge michael@0: cert Bridge:CANavy michael@0: cert CANavy:Navy michael@0: trust Navy: michael@0: policy OID.1.0 michael@0: result fail michael@0: michael@0: verify EE1:CA1 michael@0: cert CA1:Bridge michael@0: cert Bridge:CANavy michael@0: cert CANavy:Navy michael@0: trust Navy: michael@0: policy OID.1.1 michael@0: result fail michael@0: michael@0: verify EE1:CA1 michael@0: cert CA1:Bridge michael@0: cert Bridge:CANavy michael@0: cert CANavy:Navy michael@0: trust Navy: michael@0: policy OID.2.0 michael@0: result fail michael@0: michael@0: verify EE1:CA1 michael@0: cert CA1:Bridge michael@0: cert Bridge:CANavy michael@0: cert CANavy:Navy michael@0: trust Navy: michael@0: policy OID.2.1 michael@0: result fail michael@0: michael@0: verify EE2:CA2 michael@0: cert CA2:Bridge michael@0: cert Bridge:CANavy michael@0: cert CANavy:Navy michael@0: trust Navy: michael@0: policy OID.1.0 michael@0: result fail michael@0: michael@0: verify EE2:CA2 michael@0: cert CA2:Bridge michael@0: cert Bridge:CANavy michael@0: cert CANavy:Navy michael@0: trust Navy: michael@0: policy OID.1.1 michael@0: result fail michael@0: michael@0: verify EE2:CA2 michael@0: cert CA2:Bridge michael@0: cert Bridge:CANavy michael@0: cert CANavy:Navy michael@0: trust Navy: michael@0: policy OID.2.0 michael@0: result pass michael@0: michael@0: verify EE2:CA2 michael@0: cert CA2:Bridge michael@0: cert Bridge:CANavy michael@0: cert CANavy:Navy michael@0: trust Navy: michael@0: policy OID.2.1 michael@0: result fail michael@0: michael@0: verify EE2:CA2 michael@0: cert CA2:Bridge michael@0: cert Bridge:CAArmy michael@0: cert CAArmy:Army michael@0: trust Army: michael@0: policy OID.1.0 michael@0: result fail michael@0: michael@0: verify EE2:CA2 michael@0: cert CA2:Bridge michael@0: cert Bridge:CAArmy michael@0: cert CAArmy:Army michael@0: trust Army: michael@0: policy OID.1.1 michael@0: result fail michael@0: michael@0: verify EE2:CA2 michael@0: cert CA2:Bridge michael@0: cert Bridge:CAArmy michael@0: cert CAArmy:Army michael@0: trust Army: michael@0: policy OID.2.0 michael@0: result fail michael@0: michael@0: verify EE2:CA2 michael@0: cert CA2:Bridge michael@0: cert Bridge:CAArmy michael@0: cert CAArmy:Army michael@0: trust Army: michael@0: policy OID.2.1 michael@0: result fail michael@0: