From 17c8900f0b38052d16864de493bd1d409cc94180 Mon Sep 17 00:00:00 2001 From: Ian Cordasco Date: Sun, 2 Aug 2015 21:13:59 -0500 Subject: Add note to serial_number parameter about entropy - Add reference to random-numbers.rst for easy intra-linking - Document critical parameter of CertificateBuilder.add_extension - Support InhibitAnyPolicy in the CertificateBuilder frontend but not in the backend - Slim down more tests - Fix up test that asserts the backend does not allow for unsupported extensions --- tests/hazmat/backends/test_openssl.py | 14 +++----------- 1 file changed, 3 insertions(+), 11 deletions(-) (limited to 'tests/hazmat/backends/test_openssl.py') diff --git a/tests/hazmat/backends/test_openssl.py b/tests/hazmat/backends/test_openssl.py index daa37874..5b611cd0 100644 --- a/tests/hazmat/backends/test_openssl.py +++ b/tests/hazmat/backends/test_openssl.py @@ -491,10 +491,6 @@ class TestOpenSSLSignX509Certificate(object): private_key = RSA_KEY_2048.private_key(backend) builder = x509.CertificateBuilder().subject_name(x509.Name([ x509.NameAttribute(x509.OID_COUNTRY_NAME, u'US'), - x509.NameAttribute(x509.OID_STATE_OR_PROVINCE_NAME, u'Texas'), - x509.NameAttribute(x509.OID_LOCALITY_NAME, u'Austin'), - x509.NameAttribute(x509.OID_ORGANIZATION_NAME, u'PyCA'), - x509.NameAttribute(x509.OID_COMMON_NAME, u'cryptography.io'), ])).public_key( private_key.public_key() ).serial_number( @@ -503,16 +499,12 @@ class TestOpenSSLSignX509Certificate(object): datetime.datetime(1999, 1, 1) ).not_valid_after( datetime.datetime(2020, 1, 1) + ).add_extension( + x509.InhibitAnyPolicy(0), False ) - builder._extensions.append(x509.Extension( - oid=x509.OID_COUNTRY_NAME, - critical=False, - value=object() - )) - with pytest.raises(NotImplementedError): - backend.sign_x509_certificate(builder, private_key, hashes.SHA1()) + builder.sign(backend, private_key, hashes.SHA1()) class TestOpenSSLSerialisationWithOpenSSL(object): -- cgit v1.2.3