-
Notifications
You must be signed in to change notification settings - Fork 129
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Test : regenerate SSL certificate for postgresql (#506)
Previous certificate didn't contain `postgresql` name in SAN, just
`localhost`:
```
openssl x509 -noout -text -in tests/ssl/postgresql/postgresql.crt
Data:
Version: 3 (0x2)
Serial Number:
3b:84:c1:a2:8a:44:d9:5f:99:ac:0b:d1:ef:19:af:36:6b:cb:b3:50
...
Subject: C=GB, ST=London, L=London, O=Global Security, OU=IT, CN=Test leaf certificate
...
X509v3 Subject Alternative Name:
DNS:localhost
```
This made impossible to perform mTLS tests when Acra and PostgreSQL
are located on different hosts.
That certificate may be integrated in some pre-built Docker images, so
we intentionally do not revoke it. Here we just remove it from the repository
and regenerated with both `postgresql` and `localhost` names in SAN. So all
newer images will contain this certificate.
Also here we configured 'unique_subject = no' in tests/ssl/ca/index.txt.attr to
make it possible to not revoke previous certificate to regenerate it
with the same name.- Loading branch information
Showing
4 changed files
with
50 additions
and
45 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| unique_subject = no |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,22 +1,25 @@ | ||
| -----BEGIN CERTIFICATE----- | ||
| MIIDqjCCApKgAwIBAgIUO4TBoopE2V+ZrAvR7xmvNmvLs1AwDQYJKoZIhvcNAQEL | ||
| MIIEKTCCAxGgAwIBAgIUCXcNZLKtX4CsMCH52tUT4q2JdAcwDQYJKoZIhvcNAQEL | ||
| BQAwdDELMAkGA1UEBhMCR0IxDzANBgNVBAgMBkxvbmRvbjEPMA0GA1UEBwwGTG9u | ||
| ZG9uMRgwFgYDVQQKDA9HbG9iYWwgU2VjdXJpdHkxCzAJBgNVBAsMAklUMRwwGgYD | ||
| VQQDDBNUZXN0IENBIGNlcnRpZmljYXRlMCAXDTIwMDkyMjE2MDUzNFoYDzIwNzAw | ||
| OTEwMTYwNTM0WjB2MQswCQYDVQQGEwJHQjEPMA0GA1UECAwGTG9uZG9uMQ8wDQYD | ||
| VQQHDAZMb25kb24xGDAWBgNVBAoMD0dsb2JhbCBTZWN1cml0eTELMAkGA1UECwwC | ||
| SVQxHjAcBgNVBAMMFVRlc3QgbGVhZiBjZXJ0aWZpY2F0ZTCCASIwDQYJKoZIhvcN | ||
| AQEBBQADggEPADCCAQoCggEBAMoGQUWd1qneYuo69tUKajmALQ67/hKPpHH2A/N6 | ||
| 8hhpW06UyFdMYNB4FfCHqlqOgA1u8ccszxD6LXOKRJQYW1/9vFZv/4XNco2df2ay | ||
| ytSPrkcp+v5kfsJng4Hf8f8sU0MXOqHTxb4GTtMjUTYFmLXHXlpdq+0e9vV8nUH5 | ||
| 51xTYqw97V9W0fXUAKSOlO5WVoPn8i17a3PfHzd0t/t6Tqc9ZK+EIjV813nSYNPA | ||
| zpg2vvvu+xoMaH50ht5X3gHxQjjMlkHT6JZnlBDLCZg/VDr9mX5Sk++6FK7ZoEhx | ||
| 08zDAmuTEYfli1YPmBgsjKc9uyJGIuXIasQbFT87HsT+juUCAwEAAaMwMC4wCQYD | ||
| VR0TBAIwADALBgNVHQ8EBAMCBeAwFAYDVR0RBA0wC4IJbG9jYWxob3N0MA0GCSqG | ||
| SIb3DQEBCwUAA4IBAQA0uMvq2Aiu2MLaruFV0ts19bHZAp/Y/Y6r0VvXATJISg6B | ||
| ncu5h74wHHIDvo6JnDW+ACoEOFgoqmBaTR3A5OkUX3iAyhzFiuTeNbZn0DbcpnO6 | ||
| Hyca82BzOB4gCF8pOv7YcLSfcJmnRs9fV03oJ19LO4rUf0MCTH8jVMtKKKZ9aWKJ | ||
| dodc3GyC3UqpHQHCin6sTaW8nnKu2x0Fj2uPQw0XHHAte3y297+jVOxiFS2lT7Yp | ||
| ovG4ums6BGmZXv7Dk1eVW2RD4OdNQr2Jk5AT+vYGdwEwXwu+zUqO33lkJ/l9xOMT | ||
| n77o3QN/RU5x+9LSzI7Gm+fxLffwNOSq+x4hXmFT | ||
| -----END CERTIFICATE----- | ||
| VQQDDBNUZXN0IENBIGNlcnRpZmljYXRlMCAXDTIyMDIyMjE5NTI1NloYDzIwNzIw | ||
| MjEwMTk1MjU2WjCBgzELMAkGA1UEBhMCR0IxDzANBgNVBAgMBkxvbmRvbjEPMA0G | ||
| A1UEBwwGTG9uZG9uMRgwFgYDVQQKDA9HbG9iYWwgU2VjdXJpdHkxCzAJBgNVBAsM | ||
| AklUMSswKQYDVQQDDCJUZXN0IGxlYWYgY2VydGlmaWNhdGUgKHBvc3RncmVzcWwp | ||
| MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3aTyxH7h7XwUpR6o5ydz | ||
| +4JGJaJCsdTRdMMt4+XXW1l/U0IbxURQxcMN9whwJA7kOTH33UJ0iPEBw6vUpU0U | ||
| 9I7H33274EHYm1ZqGxiopfdJNoxBcaIlUZnrdP39d3/jrhgZZUqa2cUD0OLQr/Zw | ||
| mhRWEt+Pzx9bx7ErLjjhzf5uBrGiyYwoiBYk17jw54tuJZJvkP/h1/hq/dg1gTbI | ||
| TlrBeOwh8FLu6H4bgBYdqnbOTY9hFysZ+RVo3hWWHuFYWJ4cp1ztkMeu/vNtjqCy | ||
| oCcB8tOUybBkh8pQdbylr542EmH123TIEJRUb9EGOE8manVyYG8tmP9TmBO+R22U | ||
| XwIDAQABo4GgMIGdMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgXgMCAGA1UdEQQZMBeC | ||
| CWxvY2FsaG9zdIIKcG9zdGdyZXNxbDAxBggrBgEFBQcBAQQlMCMwIQYIKwYBBQUH | ||
| MAGGFWh0dHA6Ly8xMjcuMC4wLjE6ODg4ODAuBgNVHR8EJzAlMCOgIaAfhh1odHRw | ||
| Oi8vMTI3LjAuMC4xOjg4ODkvY3JsLnBlbTANBgkqhkiG9w0BAQsFAAOCAQEAEUu+ | ||
| 0AJPdZM9jo3MwBCBXHcLHdk9oxUjywi6CklYPXXxPt6syxOV3jRRvVyVIjV4KCFr | ||
| 9sWtWwxlvnu9lpAMArZJLQ7PEDT3D9Gc2SqoY8Lh0W5M0vOBJlJOzQMAZu75R97y | ||
| QeKpgeI4irnY7HeJ6NqJXEYygXYSIP2uYoT6cCsSmKpCH5XHNcUtZhttj1ga5Hlw | ||
| RP+w74O4PH1WfsPhZcdi/Y3CODQPCUFHxTqqeVxX6xr7VpMSCK6hKRlsZiqR9wpA | ||
| fnEUtd8Jf6YgNWTsSzhKwQWe4UP0ujFpdoBgazPO2+hsf4g1qVvKLpSa4A5sH8H+ | ||
| W7SvlguoOKsXsPZdhA== | ||
| -----END CERTIFICATE----- |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,27 +1,27 @@ | ||
| -----BEGIN RSA PRIVATE KEY----- | ||
| MIIEogIBAAKCAQEAygZBRZ3Wqd5i6jr21QpqOYAtDrv+Eo+kcfYD83ryGGlbTpTI | ||
| V0xg0HgV8IeqWo6ADW7xxyzPEPotc4pElBhbX/28Vm//hc1yjZ1/ZrLK1I+uRyn6 | ||
| /mR+wmeDgd/x/yxTQxc6odPFvgZO0yNRNgWYtcdeWl2r7R729XydQfnnXFNirD3t | ||
| X1bR9dQApI6U7lZWg+fyLXtrc98fN3S3+3pOpz1kr4QiNXzXedJg08DOmDa+++77 | ||
| GgxofnSG3lfeAfFCOMyWQdPolmeUEMsJmD9UOv2ZflKT77oUrtmgSHHTzMMCa5MR | ||
| h+WLVg+YGCyMpz27IkYi5chqxBsVPzsexP6O5QIDAQABAoIBAEvxZgABgXyBuLVM | ||
| TRVwwNW0tTtgt/XKQYsFbB7PDMrYcBZuH5GRiKNVQQoWNZetEb37ArBYy84Z/ZP9 | ||
| WiJBtbez7mSf3XIy9Oj/V7EHbO/SwzTFNzECHhR+TRU5VgMSaopB5SyIK0FvpZoB | ||
| ILoqCGns9C8MH2EXzsYhfgwbITm3A1BAb8LzFVqKjQCpfJdo7E3oXgzyFNS/WHF6 | ||
| T/QLXo5HZcUHlU0AqnA6lqJZc0gepKZ1CpBiJ9h+2g6JlEsG6IQl4QcPsHNUCs2T | ||
| eqi1a5vpkNpjQ0JqfB+5NophYgxcQDoVBrfTS7X+xvFP0qNXuipKO4k5iZ/tbZD1 | ||
| HfKWdYECgYEA9jLIDSNrqAI/9dJgeV7LbIPnhc2J6Y4L0WmTXASIa0gb1x+dkBCr | ||
| nJFOKroOccHv3vln0IPQo2oQHn8oBX79BZRY+s6ePTFddVmha/Fc2qAU2ZvX+3r5 | ||
| YKXbWAnoY+uXUDzFoKgg5bGDP2dpK52xMYgLzMB3euwlLSE00i7G/Y0CgYEA0hFC | ||
| Vb7HH6sBp4erX0LW0KhKyK1rZk+GGuDY0tELYdZcfe3dkY5KEOBmi6xhIJe+KLzO | ||
| O3KQJRFUdjLXMwjCvMw0X9X2CcyoC6lsHiDAwylh53SJqqTonvruLEZvXwcN4z8/ | ||
| 0euCmtKI+EzFKrhjnydhDmjuex0CnDHIIQePpLkCgYBZGoHqt2IUOVQ6vLwr0RIg | ||
| oRCfDYeXXtCKJwKtL/rLkRp6XjfhVxc1ICXBMvtdUoplEbDv93UAX7ebwfuTGaWr | ||
| akhV5YfBr+caPKk+buljOsKxC0U9AAHXZ8+d6mAQIcjuwj/oaFEXsIpG3T9kCLuD | ||
| qLBUl2fmtiayUa1TUJi2VQKBgAhUpOPPoAfyeStSpwotFWXK9sRElFjHWJMiTZb2 | ||
| sVPc82gPEdVe5jMLIyXw3R00x1bIPgl/fpXpvQa+92fPtiFUm9MdIhe7ZQKpYl9D | ||
| f0F+F6LdLUR2K796Rg29cVc8aWGUtYw2ocRQCxyFtt/91f2OyzuOD78UJHFbTAt7 | ||
| SEgJAoGAcGCMBm0gjw+GHULoB5fv8oKAGBX1lYdb7R0rjfId+TURSZlvNiYvN9LF | ||
| IoQ2Dl9YGJM3TITvXyM5MvO4wz11DqVwimPJIyB6FEqEAGprqdDOfLf55SUML2x9 | ||
| e0Ufvwt2gIU3zbShef2Sr4reQW4M+XM9xZetnfG7DX9h43L/5wE= | ||
| -----END RSA PRIVATE KEY----- | ||
| MIIEpAIBAAKCAQEA3aTyxH7h7XwUpR6o5ydz+4JGJaJCsdTRdMMt4+XXW1l/U0Ib | ||
| xURQxcMN9whwJA7kOTH33UJ0iPEBw6vUpU0U9I7H33274EHYm1ZqGxiopfdJNoxB | ||
| caIlUZnrdP39d3/jrhgZZUqa2cUD0OLQr/ZwmhRWEt+Pzx9bx7ErLjjhzf5uBrGi | ||
| yYwoiBYk17jw54tuJZJvkP/h1/hq/dg1gTbITlrBeOwh8FLu6H4bgBYdqnbOTY9h | ||
| FysZ+RVo3hWWHuFYWJ4cp1ztkMeu/vNtjqCyoCcB8tOUybBkh8pQdbylr542EmH1 | ||
| 23TIEJRUb9EGOE8manVyYG8tmP9TmBO+R22UXwIDAQABAoIBADUgnaRl+YewT06I | ||
| +9l0hoOJ5YCN1UjFB3PiePSAmk9mM3Pki72MM4RDzewh1Kd//kqLZKtfi4lro42g | ||
| eXcp89TvCI/Ulp0Zi28oloRqM7qcfKsbkXBIeoOFzn+bhg8H065eTnAOIvICHHkM | ||
| dRNIkhMMvtkFR3ZRQPGr0PriXZW/bY0nUnRHWxvB0QoaZuv2mAQiBw0Cog43SEqn | ||
| 2ZsC3PpgY07P/rLPHsbT9Qt+H9CKbGcib/wXxveL+BTcjPDS4QB82J+GNdNBwif/ | ||
| b96SxZfrM3/uoZW5hcdrfgQSv2Yi13QL8VsGjQcxmV/fxOqKF6btnQy5i83TrOE3 | ||
| /eaKZ4ECgYEA+tekwwRS/ft2mJAM/p8hY5KjD2XLkHm1aU2hJOcCfnftWL0/m9hE | ||
| +oWln+BGuTA6z575vCJ65GrWuyCQoHEe8vn+VhJxhvAlJ6k1EqlOyYhcHkp/CHd9 | ||
| WkUkIENlfPeM5gcbPaIEC9Dv7bjNfdW/hmFFuANMVbcNtxMcUcMhSZ8CgYEA4jOd | ||
| hvpWGi+WnvDOAWZkJHDXoPqY7kGKwFdAM+9pEpbEiOYe/2QlMzWkzyLMOdoBHe3q | ||
| OH6kIfIgX5oUqhs1d7agijKS0wYBVZYF7lQ9MfFedmuwc4t2kGnFuyFlZPf6aBlu | ||
| bWh9VOJ/g2OKlZiqN70YIZRjMGowqrtI0ooxPUECgYEAtku5hbDCz6nMSpuFlhX3 | ||
| ofGTZ0FHazvIRzsPfU4VVeu6Jd+DNrM5jgdKkqHfQ/50/yY9wCgev5mVbHECKleL | ||
| cnGUEOFed/5WQjiKRYGdrIDY0Xq6T2DnTI8q7feM7gDJ+PH5LhVsc1noxA6l6GlK | ||
| w1I15MEg3Lon0YCl+BWjP2kCgYBRaEYPJ9UJA4tvlDZvpovv2XShCM81H/1xj3UZ | ||
| u9XSzNPaeQc63q3MqkewDFP3lg/E17TttBYZ6WvhPDCnr7ckaGOKmPziWUztolps | ||
| FYEYkkdu0v7j9pMrEgYJfNFi7yP9hvmJAovomsNNY+uiPxkziig/HYo9CFqPd2uT | ||
| 6gwigQKBgQC82GBkXDqh71P1XVCG5+ceI+A6SnYUsXMBxit4mqHlBG/sUiIk+p2x | ||
| YyTSoPRsTt9FFqcKRbyDBixLOam2Y4xvNyHatZ5Vi2wHEmMjoievAMa+2Nwt1Fsc | ||
| ve43v6RZRYuNl9BJAaPELAet75N68W/FhGBrl77NOlQjUkMy3TvJKQ== | ||
| -----END RSA PRIVATE KEY----- |