Testsuite: regenerate OCSP proofs with proof-signer certs

[exim.git] / test / aux-fixed / exim-ca / genall

diff --git a/test/aux-fixed/exim-ca/genall b/test/aux-fixed/exim-ca/genall
index abcaf6f95e70caa8b80fb230ab53a89b49378553..1b4e7e2779050f0c289e53bf56cf4067bef95c68 100755 (executable)
--- a/test/aux-fixed/exim-ca/genall
+++ b/test/aux-fixed/exim-ca/genall
@@ -130,12 +130,13 @@ EOF
     for server in server1 revoked1 expired1 server2 revoked2 expired2
     do
        SPFX=$idir/$server.$iname/$server.$iname
     for server in server1 revoked1 expired1 server2 revoked2 expired2
     do
        SPFX=$idir/$server.$iname/$server.$iname

-       openssl ocsp -issuer $CADIR/Signer.pem -sha256 -cert $SPFX.pem -no_nonce -reqout $SPFX.ocsp.req
+       openssl ocsp -issuer $CADIR/Signer.pem -cert $SPFX.pem -no_nonce -reqout $SPFX.ocsp.req

        REQIN="-reqin $SPFX.ocsp.req"
 
        # These ones get used by the "traditional" testcases. OCSP resp signed by a cert which is
        # signed by the signer of the leaf-cert being attested to.
        REQIN="-reqin $SPFX.ocsp.req"
 
        # These ones get used by the "traditional" testcases. OCSP resp signed by a cert which is
        # signed by the signer of the leaf-cert being attested to.

-       OGENCOMMON="-rsigner $CADIR/OCSP.pem -rkey $CADIR/OCSP.key -CA $CADIR/Signer.pem -noverify"
+       OGENCOMMON="-rsigner $CADIR/OCSP.pem -rkey $CADIR/OCSP.key -CA $CADIR/Signer.pem -rother $CADIR/OCSP.pem -noverify"
+

        openssl ocsp $IVALID   $OGENCOMMON -ndays 3652 $REQIN -respout $SPFX.ocsp.good.resp
        openssl ocsp $IVALID   $OGENCOMMON -ndays 30   $REQIN -respout $SPFX.ocsp.dated.resp
        openssl ocsp $IREVOKED $OGENCOMMON -ndays 3652 $REQIN -respout $SPFX.ocsp.revoked.resp
        openssl ocsp $IVALID   $OGENCOMMON -ndays 3652 $REQIN -respout $SPFX.ocsp.good.resp
        openssl ocsp $IVALID   $OGENCOMMON -ndays 30   $REQIN -respout $SPFX.ocsp.dated.resp
        openssl ocsp $IREVOKED $OGENCOMMON -ndays 3652 $REQIN -respout $SPFX.ocsp.revoked.resp