1# 2# miscellaneous policies tested here. 3# 4globals 5allowUnverified = true 6crlNetFetchEnable = false 7certNetFetchEnable = false 8useSystemAnchors = false 9end 10 11test = "Resource signing" 12policy = resourceSign 13cert = resourceSignLeaf.cer 14root = miscPoliciesRoot.cer 15end 16 17test = "Resource signing, no EKU" 18policy = resourceSign 19cert = noEKU.cer 20root = miscPoliciesRoot.cer 21error = CSSMERR_APPLETP_INVALID_EXTENDED_KEY_USAGE 22end 23 24