travis: use fullchain to verify ssl certificate

author Lukas Schauer <lukas@schauer.so>

Mon, 14 Dec 2015 13:37:28 +0000 (14:37 +0100)

committer Lukas Schauer <lukas@schauer.so>

Mon, 14 Dec 2015 13:37:28 +0000 (14:37 +0100)
author Lukas Schauer <lukas@schauer.so>
Mon, 14 Dec 2015 13:37:28 +0000 (14:37 +0100)
committer Lukas Schauer <lukas@schauer.so>
Mon, 14 Dec 2015 13:37:28 +0000 (14:37 +0100)
diff --git a/.travis.yml b/.travis.yml

index fa842beb44f3a128927f00fff601ee76e25eeb6d..7d5fe0e706355bb5448b955039bab17e6cec4c61 100644 (file)
--- a/.travis.yml
+++ b/.travis.yml
@@ -26,6 +26,7 @@ script:
    - ./letsencrypt.sh --cron
    - ./letsencrypt.sh
    - openssl x509 -in "certs/${TMP_URL}/cert.pem" -noout -text
-  - openssl verify -verbose -CAfile "certs/lets-encrypt-staging.pem" -purpose sslserver "certs/${TMP_URL}/cert.pem"
+  - errout="$(openssl verify -verbose -CAfile "certs/${TMP_URL}/fullchain.pem" -purpose sslserver "certs/${TMP_URL}/fullchain.pem" | grep -v ': OK$')"
+  - if [[ ! -z "${errout}" ]]; then printf -- "${errout}"; exit 1; fi
    - rm private_key.pem
    - ./letsencrypt.sh --revoke "certs/${TMP_URL}/cert.pem" --privkey "certs/${TMP_URL}/privkey.pem"
author	Lukas Schauer <lukas@schauer.so>
	Mon, 14 Dec 2015 13:37:28 +0000 (14:37 +0100)
committer	Lukas Schauer <lukas@schauer.so>
	Mon, 14 Dec 2015 13:37:28 +0000 (14:37 +0100)