1# 2# Test for empty/bad cert handling, Radar 3116734. 3# Without the fix for 3116734, this results in an assertion failure on 4# debug Security.framework. 5# 6globals 7allowUnverified = true 8crlNetFetchEnable = false 9certNetFetchEnable = false 10useSystemAnchors = false 11end 12 13test = "Basic good verify as sanity check" 14cert = leaf.cer 15cert = CA.cer 16root = root.cer 17# IS_IN_ANCHORS | IS_ROOT 18certstatus = 2:0x18 19end 20 21test = "Throw in empty cert not as leaf, it should be ignored" 22cert = leaf.cer 23cert = CA.cer 24cert = emptyCert.cer 25root = root.cer 26# IS_IN_ANCHORS | IS_ROOT 27certstatus = 2:0x18 28end 29 30test = "Throw in text file not as leaf, it should be ignored" 31cert = leaf.cer 32cert = CA.cer 33cert = emptyCert.scr 34root = root.cer 35# IS_IN_ANCHORS | IS_ROOT 36certstatus = 2:0x18 37end 38 39test = "Empty cert as leaf, expect error" 40cert = emptyCert.cer 41cert = CA.cer 42root = root.cer 43error = CSSMERR_TP_INVALID_CERTIFICATE 44end 45 46test = "Text file as leaf, expect error" 47cert = emptyCert.cer 48cert = CA.cer 49root = root.cer 50error = CSSMERR_TP_INVALID_CERTIFICATE 51end 52