diff options
author | Jeremy Harris <jgh146exb@wizmail.org> | 2017-12-18 15:38:54 +0000 |
---|---|---|
committer | Jeremy Harris <jgh146exb@wizmail.org> | 2017-12-18 16:23:07 +0000 |
commit | dc9c8f8b52cbf2e8424f5e98f63d29aa7fb81fe7 (patch) | |
tree | a76e6042d7fb65130815dd36ddae949fcf7a0a97 /test/aux-fixed/exim-ca/genall | |
parent | 242583694aff4f43c3dbf7581b1100a68b3e0c11 (diff) | |
download | exim4-dc9c8f8b52cbf2e8424f5e98f63d29aa7fb81fe7.tar.gz |
Testsuite: move CRL testcases away from using SHA1-signed certs
Diffstat (limited to 'test/aux-fixed/exim-ca/genall')
-rwxr-xr-x | test/aux-fixed/exim-ca/genall | 14 |
1 files changed, 11 insertions, 3 deletions
diff --git a/test/aux-fixed/exim-ca/genall b/test/aux-fixed/exim-ca/genall index 4a6a7aabe..e81e2f385 100755 --- a/test/aux-fixed/exim-ca/genall +++ b/test/aux-fixed/exim-ca/genall @@ -189,7 +189,7 @@ do SDIR=$idir/$server.$iname SPFX=$SDIR/$server.$iname openssl ec -in $SPFX.key -passin file:$SDIR/pwdfile -out $SPFX.unlocked.key - cat $SPFX.pem example.$tld/CA/Signer.pem >$SPFX.chain.pem + cat $SPFX.pem $idir/CA/Signer.pem >$SPFX.chain.pem done #### @@ -238,28 +238,36 @@ read junk # Create CRL files in .der and .pem # empty versions, and ones with the revoked servers +DATENOW=`date -u +%Y%m%d%H%M%SZ` for tld in com org net do CADIR=example.$tld/CA CRLIN=$CADIR/crl.empty.in.txt - DATENOW=`date -u +%Y%m%d%H%M%SZ` echo "update=$DATENOW " >$CRLIN crlutil -G -d $CADIR -f $CADIR/pwdfile \ -n 'Signing Cert rsa' -c $CRLIN -o $CADIR/crl.empty openssl crl -in $CADIR/crl.empty -inform der -out $CADIR/crl.empty.pem done sleep 2 +DATENOW=`date -u +%Y%m%d%H%M%SZ` for tld in com org net do CADIR=example.$tld/CA CRLIN=$CADIR/crl.v2.in.txt - DATENOW=`date -u +%Y%m%d%H%M%SZ` echo "update=$DATENOW " >$CRLIN echo "addcert 102 $DATENOW" >>$CRLIN echo "addcert 202 $DATENOW" >>$CRLIN crlutil -G -d $CADIR -f $CADIR/pwdfile \ -n 'Signing Cert rsa' -c $CRLIN -o $CADIR/crl.v2 openssl crl -in $CADIR/crl.v2 -inform der -out $CADIR/crl.v2.pem + + CRLIN=$CADIR/crl.Signer.in.txt + echo "update=$DATENOW " >$CRLIN + crlutil -G -d $CADIR -f $CADIR/pwdfile \ + -n 'Certificate Authority rsa' -c $CRLIN -o $CADIR/crl.Signer + openssl crl -in $CADIR/crl.Signer -inform der -out $CADIR/crl.Signer.pem + + cat $CADIR/crl.Signer.pem $CADIR/crl.v2.pem > $CADIR/crl.chain.pem done # Finally, a single certificate-directory |