michael@0: # This Source Code Form is subject to the terms of the Mozilla Public michael@0: # License, v. 2.0. If a copy of the MPL was not distributed with this michael@0: # file, You can obtain one at http://mozilla.org/MPL/2.0/. michael@0: michael@0: scenario Extension michael@0: michael@0: entity Root michael@0: type Root michael@0: michael@0: entity CA1 michael@0: type Intermediate michael@0: issuer Root michael@0: policy OID.1.0 michael@0: michael@0: entity CA2 michael@0: type Intermediate michael@0: issuer CA1 michael@0: policy OID.1.0 michael@0: michael@0: entity User michael@0: type EE michael@0: issuer CA2 michael@0: policy OID.1.0 michael@0: michael@0: db All michael@0: michael@0: verify User:CA2 michael@0: cert CA2:CA1 michael@0: cert CA1:Root michael@0: cert Root: michael@0: trust Root: michael@0: policy OID.1.0 michael@0: result pass michael@0: michael@0: verify User:CA2 michael@0: cert CA2:CA1 michael@0: cert CA1:Root michael@0: cert Root: michael@0: trust Root: michael@0: policy OID.2.0 michael@0: result fail michael@0: michael@0: verify User:CA2 michael@0: cert CA2:CA1 michael@0: cert CA1:Root michael@0: trust CA1:Root michael@0: policy OID.1.0 michael@0: result pass michael@0: michael@0: verify User:CA2 michael@0: cert CA2:CA1 michael@0: cert CA1:Root michael@0: trust CA1:Root michael@0: policy OID.2.0 michael@0: result fail michael@0: michael@0: verify User:CA2 michael@0: cert CA2:CA1 michael@0: trust CA2:CA1 michael@0: policy OID.1.0 michael@0: result pass michael@0: michael@0: verify User:CA2 michael@0: cert CA2:CA1 michael@0: trust CA2:CA1 michael@0: policy OID.2.0 michael@0: result fail michael@0: michael@0: import Root:: michael@0: import CA1:Root: michael@0: import CA2:CA1: michael@0: michael@0: verify User:CA2 michael@0: trust Root michael@0: policy OID.1.0 michael@0: result pass michael@0: michael@0: verify User:CA2 michael@0: trust Root michael@0: policy OID.2.0 michael@0: result fail michael@0: michael@0: verify User:CA2 michael@0: trust CA1 michael@0: policy OID.1.0 michael@0: result pass michael@0: michael@0: verify User:CA2 michael@0: trust CA1 michael@0: policy OID.2.0 michael@0: result fail michael@0: michael@0: verify User:CA2 michael@0: trust CA2 michael@0: policy OID.1.0 michael@0: result pass michael@0: michael@0: verify User:CA2 michael@0: trust CA2 michael@0: policy OID.2.0 michael@0: result fail michael@0: