Add note to serial_number parameter about entropy

- Add reference to random-numbers.rst for easy intra-linking - Document critical parameter of CertificateBuilder.add_extension - Support InhibitAnyPolicy in the CertificateBuilder frontend but not in the backend - Slim down more tests - Fix up test that asserts the backend does not allow for unsupported extensions
author: Ian Cordasco <graffatcolmingov@gmail.com> 2015-08-02 21:13:59 -0500
committer: Ian Cordasco <graffatcolmingov@gmail.com> 2015-08-02 22:36:17 -0500
commit: 17c8900f0b38052d16864de493bd1d409cc94180 (patch)
tree: 4cb7465e7d07d2d2fe067cfd1d564978fc968945 /tests/hazmat/backends/test_openssl.py
parent: 47e9408311768cfdae8199bb2572ad0bcacbbb2b (diff)
download: cryptography-17c8900f0b38052d16864de493bd1d409cc94180.tar.gz
cryptography-17c8900f0b38052d16864de493bd1d409cc94180.tar.bz2
cryptography-17c8900f0b38052d16864de493bd1d409cc94180.zip
1 files changed, 3 insertions, 11 deletions
diff --git a/tests/hazmat/backends/test_openssl.py b/tests/hazmat/backends/test_openssl.py
index daa37874..5b611cd0 100644
--- a/tests/hazmat/backends/test_openssl.py
+++ b/tests/hazmat/backends/test_openssl.py
@@ -491,10 +491,6 @@ class TestOpenSSLSignX509Certificate(object):
         private_key = RSA_KEY_2048.private_key(backend)
         builder = x509.CertificateBuilder().subject_name(x509.Name([
             x509.NameAttribute(x509.OID_COUNTRY_NAME, u'US'),
-            x509.NameAttribute(x509.OID_STATE_OR_PROVINCE_NAME, u'Texas'),
-            x509.NameAttribute(x509.OID_LOCALITY_NAME, u'Austin'),
-            x509.NameAttribute(x509.OID_ORGANIZATION_NAME, u'PyCA'),
-            x509.NameAttribute(x509.OID_COMMON_NAME, u'cryptography.io'),
         ])).public_key(
             private_key.public_key()
         ).serial_number(
@@ -503,16 +499,12 @@ class TestOpenSSLSignX509Certificate(object):
             datetime.datetime(1999, 1, 1)
         ).not_valid_after(
             datetime.datetime(2020, 1, 1)
+        ).add_extension(
+            x509.InhibitAnyPolicy(0), False
         )
 
-        builder._extensions.append(x509.Extension(
-            oid=x509.OID_COUNTRY_NAME,
-            critical=False,
-            value=object()
-        ))
-
         with pytest.raises(NotImplementedError):
-            backend.sign_x509_certificate(builder, private_key, hashes.SHA1())
+            builder.sign(backend, private_key, hashes.SHA1())
 
 
 class TestOpenSSLSerialisationWithOpenSSL(object):
author	Ian Cordasco <graffatcolmingov@gmail.com>	2015-08-02 21:13:59 -0500
committer	Ian Cordasco <graffatcolmingov@gmail.com>	2015-08-02 22:36:17 -0500
commit	17c8900f0b38052d16864de493bd1d409cc94180 (patch)
tree	4cb7465e7d07d2d2fe067cfd1d564978fc968945 /tests/hazmat/backends/test_openssl.py
parent	47e9408311768cfdae8199bb2572ad0bcacbbb2b (diff)
download	cryptography-17c8900f0b38052d16864de493bd1d409cc94180.tar.gz cryptography-17c8900f0b38052d16864de493bd1d409cc94180.tar.bz2 cryptography-17c8900f0b38052d16864de493bd1d409cc94180.zip