| |
@@ -42,8 +42,8 @@
|
| |
openssl x509 -out minicert.nss.$size.pem -in minicert.nss.$size -inform der
|
| |
# The RSA tests already verify the contents of the requests, so we really only
|
| |
# need to care about the signatures passing verification.
|
| |
- openssl req -verify -noout < csr.nss.$size 2>&1
|
| |
- openssl req -verify -noout < csr.openssl.$size 2>&1
|
| |
+ openssl req -verify -noout < csr.nss.$size 2>&1 | sed 's/Certificate request self-signature //'
|
| |
+ openssl req -verify -noout < csr.openssl.$size 2>&1 | sed 's/Certificate request self-signature //'
|
| |
openssl spkac -verify -noout < spkac.nss.$size 2>&1
|
| |
openssl spkac -verify -noout < spkac.openssl.$size 2>&1
|
| |
openssl verify -CAfile minicert.openssl.$size.pem minicert.openssl.$size.pem 2>&1
|
| |
OpenSSL 3.0.0 change a lot of output messages. When verifying
a certificate instead of printing just "verify OK" it prints
"Certificate request self-signature verify OK"
Modify the check to match both OpenSSL 1.x and 3.x
Related: https://pagure.io/certmonger/issue/223
Signed-off-by: Rob Crittenden rcritten@redhat.com