|
sl@0
|
1 |
Current state of filecertstore tests
|
|
sl@0
|
2 |
|
|
sl@0
|
3 |
Scripts
|
|
sl@0
|
4 |
|
|
sl@0
|
5 |
UNIFIEDCERTSTORE1-CONF1.txt - All tests pass
|
|
sl@0
|
6 |
|
|
sl@0
|
7 |
UNIFIEDCERTSTORE2-CONF1.txt - All tests pass (use techview mode)
|
|
sl@0
|
8 |
|
|
sl@0
|
9 |
UNIFIEDCERTSTORE3-CONF1.txt - Most tests pass (expect 41 to fail)
|
|
sl@0
|
10 |
Failure occurs because the tests attempt to add some certificates for which private keys do not exist yet AND because the test tries to do filtered listing on user certificates for a number of different keyId and key usage combinations.
|
|
sl@0
|
11 |
|
|
sl@0
|
12 |
To resolve these issues we need to
|
|
sl@0
|
13 |
(a) generate a couple more certificates with keys that have restricted usages, and import the keys at the beginning of the script (with the appropriate usage)
|
|
sl@0
|
14 |
|
|
sl@0
|
15 |
(b) Rewrite the filtering tests to use the appropriate combinations
|
|
sl@0
|
16 |
|
|
sl@0
|
17 |
So far, I've added 3 certificates based on 3 different RSA keys with all usage (rsacert1, rsacert2 and rsacert3) and 1 certificate based on a NR key with NR usage (nrcert) |