Update: replace hash symlink with CA bundle for certificate verification

2026-04-24 23:25:44 +02:00
parent c29537c9e6
commit c043410436
4 changed files with 39 additions and 48 deletions
--- a/run-tests.sh
+++ b/run-tests.sh
@@ -46,10 +46,10 @@ function display_certificate() {
    openssl x509 -in "$CERT_PATH" -noout -subject -issuer -serial -fingerprint
    echo

-    echo -e "\nVerifying certificate against the CA ($CA_DIR)..."
+    echo -e "\nVerifying certificate against the CA bundle ($CA_DIR/ca_bundle.pem)..."

-    # Verify the certificate against the CA
-    if openssl verify -CApath "$CA_DIR" "$CERT_PATH" 2>/dev/null; then
+    # Verify the certificate against the CA bundle
+    if openssl verify -CAfile "$CA_DIR/ca_bundle.pem" "$CERT_PATH" 2>/dev/null; then
        echo "Certificate verification successful."
    else
        echo "ERROR: Certificate verification failed." >&2