feat: Implement verification of trust chains in OpenSSLCertificateCreator

src/test/java/de/mlessmann/certassist/TestOpenSSLCertificateCreator.java

@@ -5,6 +5,9 @@ import static org.mockito.Mockito.*;
 
 import de.mlessmann.certassist.openssl.*;
 import de.mlessmann.certassist.openssl.CertificateRequest.RequestType;
+import java.nio.file.Files;
+import java.nio.file.Path;
+import java.nio.file.StandardOpenOption;
 import org.junit.jupiter.api.BeforeEach;
 import org.junit.jupiter.api.Test;
 
@@ -37,7 +40,8 @@ class TestOpenSSLCertificateCreator {
             .build();
 
         try (var cert = certificateCreator.createCertificate(certRequest)) {
-            assertThat(certificateCreator.verifyCertificate(cert.certificatePath())).isEqualTo(true);
+            assertThat(certificateCreator.verifyCertificate(cert.certificatePath(), cert.certificatePath()))
+                .isEqualTo(true);
             System.out.println("Certificate created: " + cert);
 
             CertificateRequest childRequest = CertificateRequest
@@ -55,7 +59,11 @@ class TestOpenSSLCertificateCreator {
             when(certificateProvider.requestCertificateUsage(cert.fingerprint())).thenReturn(spiedCert);
             try (var childCert = certificateCreator.createCertificate(childRequest)) {
                 System.out.println("Child certificate created: " + childCert);
-                assertThat(certificateCreator.verifyCertificate(childCert.certificatePath())).isEqualTo(true);
+                Path fullchain = childCert.certificatePath().getParent().resolve("fullchain.pem");
+                Files.write(fullchain, Files.readAllBytes(childCert.certificatePath()), StandardOpenOption.CREATE);
+                Files.write(fullchain, Files.readAllBytes(cert.certificatePath()), StandardOpenOption.APPEND);
+
+                assertThat(certificateCreator.verifyCertificate(cert.certificatePath(), fullchain)).isEqualTo(true);
             }
         }
     }