# HG changeset patch
# User Sergey Kandaurov <pluknet@nginx.com>
# Date 1487191909 -10800
# Node ID 7cce4d12579c4d5a1d5d188fa6efd7fcbfba4ff3
# Parent  cb46ac65d50e727276c115d8fefba8f25734b9a3
Tests: fixed generating DH/DSA parameter using OpenSSL 1.1.0.

According to OpenSSL documentation, numbits must be the last option,
and OpenSSL 1.1.0 insists on that order.

diff --git a/ssl_certificates.t b/ssl_certificates.t
--- a/ssl_certificates.t
+++ b/ssl_certificates.t
@@ -73,11 +73,11 @@ EOF
 
 my $d = $t->testdir();
 
-system("openssl dhparam -dsaparam 1024 -out '$d/dhparam.pem' "
+system("openssl dhparam -dsaparam -out '$d/dhparam.pem' 1024 "
 	. ">>$d/openssl.out 2>&1") == 0 or die "Can't create DH param: $!\n";
 system("openssl genrsa -out '$d/rsa.key' >>$d/openssl.out 2>&1") == 0
         or die "Can't create RSA pem: $!\n";
-system("openssl dsaparam -genkey 1024 -out '$d/dsa.key' >>$d/openssl 2>&1") == 0
+system("openssl dsaparam -genkey -out '$d/dsa.key' 1024 >>$d/openssl 2>&1") == 0
 	or die "Can't create DSA pem: $!\n";
 
 foreach my $name ('dsa', 'rsa') {