diff options
author | Simon Josefsson <simon@josefsson.org> | 2009-05-10 11:07:17 +0200 |
---|---|---|
committer | Simon Josefsson <simon@josefsson.org> | 2009-05-10 11:07:17 +0200 |
commit | b46bb5678b5a6e82da798f62aac06026e75ba418 (patch) | |
tree | d97e1e77c70fb380c5a928c64683cb23eb77b0fd | |
parent | 99208fb9c49d10981fd967659d83326072186d9d (diff) | |
download | gnutls-b46bb5678b5a6e82da798f62aac06026e75ba418.tar.gz |
Verisign CA v1 cert has expired! Change expected results.
Also test expiration code more.
-rw-r--r-- | tests/chainverify.c | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/tests/chainverify.c b/tests/chainverify.c index 7b0ba9f730..1595b5e84b 100644 --- a/tests/chainverify.c +++ b/tests/chainverify.c @@ -671,10 +671,16 @@ static struct 0, GNUTLS_CERT_SIGNER_NOT_FOUND | GNUTLS_CERT_INVALID }, { "verisign.com v1 fail", verisign_com_chain, &verisign_com_chain[3], 0, GNUTLS_CERT_SIGNER_NOT_CA | GNUTLS_CERT_INVALID }, + { "verisign.com v1 fail2", verisign_com_chain, &verisign_com_chain[3], + GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT, + GNUTLS_CERT_EXPIRED | GNUTLS_CERT_INVALID }, { "verisign.com v1 ok", verisign_com_chain, &verisign_com_chain[3], - GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT, 0 }, + GNUTLS_VERIFY_DISABLE_TIME_CHECKS | GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT, + 0 }, { "citibank.com v1 fail", citibank_com_chain, &citibank_com_chain[2], 0, GNUTLS_CERT_SIGNER_NOT_CA | GNUTLS_CERT_INVALID }, + { "expired self signed", pem_self_cert, &pem_self_cert[0], + 0, GNUTLS_CERT_EXPIRED | GNUTLS_CERT_INVALID }, { "self signed", pem_self_cert, &pem_self_cert[0], GNUTLS_VERIFY_DISABLE_TIME_CHECKS, 0 }, { "ca=false", thea_chain, &thea_chain[1], |