diff options
| author | Ben Irving <jammin.irving@gmail.com> | 2016-06-14 21:28:29 +0300 |
|---|---|---|
| committer | Jacob Hoffman-Andrews <github@hoffman-andrews.com> | 2016-06-14 21:28:29 +0300 |
| commit | 61b77766c26233745b922ef8777e6694c49ba053 (patch) | |
| tree | f3d061ae71ec2cf37ab1f829520dd182aafc8598 /tests/boulder-integration.sh | |
| parent | 268fb903b2d8c2cc64cb4b1f2c19d1ff5775d051 (diff) | |
Add integration test cases for must staple and ECDSA (#3158)
Diffstat (limited to 'tests/boulder-integration.sh')
| -rwxr-xr-x | tests/boulder-integration.sh | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/tests/boulder-integration.sh b/tests/boulder-integration.sh index 323ea004b..ab8fde5f6 100755 --- a/tests/boulder-integration.sh +++ b/tests/boulder-integration.sh @@ -84,6 +84,24 @@ if [ "$size1" -lt 3000 ] || [ "$size2" -lt 3000 ] || [ "$size3" -gt 1800 ] ; the exit 1 fi +# ECDSA +openssl ecparam -genkey -name secp384r1 -out "${root}/privkey-p384.pem" +SAN="DNS:ecdsa.le.wtf" openssl req -new -sha256 \ + -config "${OPENSSL_CNF:-openssl.cnf}" \ + -key "${root}/privkey-p384.pem" \ + -subj "/" \ + -reqexts san \ + -outform der \ + -out "${root}/csr-p384.der" +common auth --csr "${root}/csr-p384.der" \ + --cert-path "${root}/csr/cert-p384.pem" \ + --chain-path "${root}/csr/chain-p384.pem" +openssl x509 -in "${root}/csr/cert-p384.pem" -text | grep 'ASN1 OID: secp384r1' + +# OCSP Must Staple +common auth --must-staple --domains "must-staple.le.wtf" +openssl x509 -in "${root}/conf/live/must-staple.le.wtf/cert.pem" -text | grep '1.3.6.1.5.5.7.1.24' + # revoke by account key common revoke --cert-path "$root/conf/live/le.wtf/cert.pem" # revoke renewed |