From 8d50d90ceb862dedc1376895832425d4d4c51d39 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Sandor=20Sz=C3=BCcs?= Date: Tue, 23 Jan 2018 17:04:06 +0100 Subject: [PATCH] fix test cert creation, you can now recreate via makefile (#119) --- Makefile | 35 +++++++++++++++++++++++ kubernetes/testdata/ca.crt | 34 +++++++++++----------- kubernetes/testdata/cert.pem | 34 +++++++++++----------- kubernetes/testdata/key.pem | 55 ++++++++++++++++++------------------ 4 files changed, 97 insertions(+), 61 deletions(-) diff --git a/Makefile b/Makefile index 355d1d7e..b897e5d7 100644 --- a/Makefile +++ b/Makefile @@ -51,3 +51,38 @@ build.docker: build.push: build.docker docker push "$(IMAGE):$(TAG)" + +define TEST_CNF +[req] +default_bits = 2048 +default_md = sha256 +distinguished_name = req_distinguished_name +x509_extensions = x509_ext +req_extensions = v3_req +string_mask = utf8only +[req_distinguished_name] +commonName = Common Name (e.g. server FQDN or YOUR name) +commonName_default = / +[x509_ext] +subjectKeyIdentifier = hash +authorityKeyIdentifier = keyid,issuer +basicConstraints = CA:TRUE +keyUsage = nonRepudiation, digitalSignature, keyEncipherment +subjectAltName = @alt_names +[v3_req] +subjectKeyIdentifier = hash +basicConstraints = CA:TRUE +keyUsage = nonRepudiation, digitalSignature, keyEncipherment +subjectAltName = @alt_names +[alt_names] +DNS.1 = *.domain.name +IP.1 = 127.0.0.1 +endef + +recreate.ca: recreate.cnf + openssl req -config kubernetes/testdata/test.cnf -new -x509 -sha256 -nodes -keyout kubernetes/testdata/key.pem -days $$((10*365)) -out kubernetes/testdata/ca.crt -subj "/" + cp kubernetes/testdata/ca.crt kubernetes/testdata/cert.pem + +export TEST_CNF +recreate.cnf: + @echo "$$TEST_CNF" > kubernetes/testdata/test.cnf diff --git a/kubernetes/testdata/ca.crt b/kubernetes/testdata/ca.crt index caa80f52..a9452361 100644 --- a/kubernetes/testdata/ca.crt +++ b/kubernetes/testdata/ca.crt @@ -1,19 +1,19 @@ -----BEGIN CERTIFICATE----- -MIIDBzCCAe+gAwIBAgIRANxR1TqqRznal3Tp6JByI70wDQYJKoZIhvcNAQELBQAw -EjEQMA4GA1UEChMHQWNtZSBDbzAeFw0xNzAxMjIyMTI2NTJaFw0xODAxMjIyMTI2 -NTJaMBIxEDAOBgNVBAoTB0FjbWUgQ28wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw -ggEKAoIBAQCy7R3pSDWxelYysVJupE7RYPB2b7rQsJBUqTZyfxpQxoUx4vY0U2eu -MkBVO/lvPctIpg9HyjRRXuDkUrKCq5UaXop5mxwexg/Yn2ut6Gw0wd5vNpvPgZuJ -QQLp0D0lC0CQzgobrvABY1HRBZU+PQaOMStRGogMjZaLjC8KyYhMtDeWrJffh3w/ -riFgbpQcc+IG+gpMe/G+tXiFHyKiaFehlOcC5yD4Dv4x2aIBaSxXvgYYNwf5kmw6 -5Wzt2Gs9L8qpw+MdFOC9H55OjCLIXj9UYABguLX+o7RdXiVu81RpSpE4Uw+uGoA8 -9XUNDQCY5sqww+spllWjfr6D4MgPBRWLAgMBAAGjWDBWMA4GA1UdDwEB/wQEAwIC -pDATBgNVHSUEDDAKBggrBgEFBQcDATAPBgNVHRMBAf8EBTADAQH/MB4GA1UdEQQX -MBWCDSouZG9tYWluLm5hbWWHBH8AAAEwDQYJKoZIhvcNAQELBQADggEBALHqBaEH -3ieOuCQB5Xg9IBqOgdIlcBzBLr1j6IMtBN+XwCYvdmhEs+u77Y41K5rO+/Xp1l8t -z5sh2jxJ9h0gKXTDXTpW26v6kLIfbAmxV7on2KhT2BX5UIKZ3pUJBCdqtHCB8bOU -Na56i6DRh7xDEe8EgTPXrEOvX1maoK3ZFt5dksCU705F33tlpMnx5N1Uk7HvZC6B -4aOe7l0fwB0qILeJeFMjvmJF0z0N88dbME4iYQ9zTc4ZSt7VVshCJOckHShI/hDZ -KfC0Bi47eft+uvJq+pkErC82DCEd9mSi8u1iMam20hGjcfBvtMqb5f5gwwTkMP1L -ElsxyL8vBRAJ8N8= +MIIDADCCAeigAwIBAgIJAOvPBgiduOT1MA0GCSqGSIb3DQEBCwUAMAAwHhcNMTgw +MTIzMTU1MjE4WhcNMjgwMTIxMTU1MjE4WjAAMIIBIjANBgkqhkiG9w0BAQEFAAOC +AQ8AMIIBCgKCAQEApY/B65k/O8DPNh76DPQk78XkJ/PD6qh7CO2Ih7lVh2YbW2xA +EucO7gN5/Ab3NduK1xo4dRL2IOKVCSAoWtYyZyi9ayhWS+v6iXLutz30syNgHCS0 +iM4cIaSiaSOtE4Bb2MauvRkrW9a02Ruy57IUBxxio/OpjHi7IZ4XMz5/PEImH/dV +8kp9fvqRidWgpUxbnwdf0j+7RXOQGFa+oVBHgWD97doZmsGJ0oXcsKjGTfrOaJDd +Qfu5FUqGO+dM0cfZ2CuTApWGgxy7+l4xyePQMwLFcb8pEXXV+W9oOx7CT8/1jGU6 +mz2K9rFP54p0huekoSaWwXiqXInaff+PS+8aWwIDAQABo30wezAdBgNVHQ4EFgQU +txY94TeScd7WJKmL8yl6jKm0qLYwHwYDVR0jBBgwFoAUtxY94TeScd7WJKmL8yl6 +jKm0qLYwDAYDVR0TBAUwAwEB/zALBgNVHQ8EBAMCBeAwHgYDVR0RBBcwFYINKi5k +b21haW4ubmFtZYcEfwAAATANBgkqhkiG9w0BAQsFAAOCAQEAK27QBAgPNRsFYDQj +GXupo1vx6jP043TdrsZa6nRXR22tY+9JU+UWaxEOOpbuRqThdrIWAwSkbsqq37Jc +klbgLbJ5s6kAl+hIhZHRb2MHAUZ4AcZUXMm6Zr6zwEXhbI5qpxBbAXN708LbhBNE +xswmwsjzLxFkpKrm5jpeAcekVczWL7tPAGwqr7VIKeJYl0ag7Goyr11aKRMgXY+M +kimc3zhVCfEn/hjAftCXSQbvUKENP0LX1bgZ0zOmo9XnjkhECMsp91DwUkiYd6pS +6aVFgckgIlla6zvWHw7VIolzQOr6nLuO5XGMi5YbwzU5cTuNksUEjNKOdyNmn7h+ +OrZMpA== -----END CERTIFICATE----- diff --git a/kubernetes/testdata/cert.pem b/kubernetes/testdata/cert.pem index caa80f52..a9452361 100644 --- a/kubernetes/testdata/cert.pem +++ b/kubernetes/testdata/cert.pem @@ -1,19 +1,19 @@ -----BEGIN CERTIFICATE----- -MIIDBzCCAe+gAwIBAgIRANxR1TqqRznal3Tp6JByI70wDQYJKoZIhvcNAQELBQAw -EjEQMA4GA1UEChMHQWNtZSBDbzAeFw0xNzAxMjIyMTI2NTJaFw0xODAxMjIyMTI2 -NTJaMBIxEDAOBgNVBAoTB0FjbWUgQ28wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw -ggEKAoIBAQCy7R3pSDWxelYysVJupE7RYPB2b7rQsJBUqTZyfxpQxoUx4vY0U2eu -MkBVO/lvPctIpg9HyjRRXuDkUrKCq5UaXop5mxwexg/Yn2ut6Gw0wd5vNpvPgZuJ -QQLp0D0lC0CQzgobrvABY1HRBZU+PQaOMStRGogMjZaLjC8KyYhMtDeWrJffh3w/ -riFgbpQcc+IG+gpMe/G+tXiFHyKiaFehlOcC5yD4Dv4x2aIBaSxXvgYYNwf5kmw6 -5Wzt2Gs9L8qpw+MdFOC9H55OjCLIXj9UYABguLX+o7RdXiVu81RpSpE4Uw+uGoA8 -9XUNDQCY5sqww+spllWjfr6D4MgPBRWLAgMBAAGjWDBWMA4GA1UdDwEB/wQEAwIC -pDATBgNVHSUEDDAKBggrBgEFBQcDATAPBgNVHRMBAf8EBTADAQH/MB4GA1UdEQQX -MBWCDSouZG9tYWluLm5hbWWHBH8AAAEwDQYJKoZIhvcNAQELBQADggEBALHqBaEH -3ieOuCQB5Xg9IBqOgdIlcBzBLr1j6IMtBN+XwCYvdmhEs+u77Y41K5rO+/Xp1l8t -z5sh2jxJ9h0gKXTDXTpW26v6kLIfbAmxV7on2KhT2BX5UIKZ3pUJBCdqtHCB8bOU -Na56i6DRh7xDEe8EgTPXrEOvX1maoK3ZFt5dksCU705F33tlpMnx5N1Uk7HvZC6B -4aOe7l0fwB0qILeJeFMjvmJF0z0N88dbME4iYQ9zTc4ZSt7VVshCJOckHShI/hDZ -KfC0Bi47eft+uvJq+pkErC82DCEd9mSi8u1iMam20hGjcfBvtMqb5f5gwwTkMP1L -ElsxyL8vBRAJ8N8= +MIIDADCCAeigAwIBAgIJAOvPBgiduOT1MA0GCSqGSIb3DQEBCwUAMAAwHhcNMTgw +MTIzMTU1MjE4WhcNMjgwMTIxMTU1MjE4WjAAMIIBIjANBgkqhkiG9w0BAQEFAAOC +AQ8AMIIBCgKCAQEApY/B65k/O8DPNh76DPQk78XkJ/PD6qh7CO2Ih7lVh2YbW2xA +EucO7gN5/Ab3NduK1xo4dRL2IOKVCSAoWtYyZyi9ayhWS+v6iXLutz30syNgHCS0 +iM4cIaSiaSOtE4Bb2MauvRkrW9a02Ruy57IUBxxio/OpjHi7IZ4XMz5/PEImH/dV +8kp9fvqRidWgpUxbnwdf0j+7RXOQGFa+oVBHgWD97doZmsGJ0oXcsKjGTfrOaJDd +Qfu5FUqGO+dM0cfZ2CuTApWGgxy7+l4xyePQMwLFcb8pEXXV+W9oOx7CT8/1jGU6 +mz2K9rFP54p0huekoSaWwXiqXInaff+PS+8aWwIDAQABo30wezAdBgNVHQ4EFgQU +txY94TeScd7WJKmL8yl6jKm0qLYwHwYDVR0jBBgwFoAUtxY94TeScd7WJKmL8yl6 +jKm0qLYwDAYDVR0TBAUwAwEB/zALBgNVHQ8EBAMCBeAwHgYDVR0RBBcwFYINKi5k +b21haW4ubmFtZYcEfwAAATANBgkqhkiG9w0BAQsFAAOCAQEAK27QBAgPNRsFYDQj +GXupo1vx6jP043TdrsZa6nRXR22tY+9JU+UWaxEOOpbuRqThdrIWAwSkbsqq37Jc +klbgLbJ5s6kAl+hIhZHRb2MHAUZ4AcZUXMm6Zr6zwEXhbI5qpxBbAXN708LbhBNE +xswmwsjzLxFkpKrm5jpeAcekVczWL7tPAGwqr7VIKeJYl0ag7Goyr11aKRMgXY+M +kimc3zhVCfEn/hjAftCXSQbvUKENP0LX1bgZ0zOmo9XnjkhECMsp91DwUkiYd6pS +6aVFgckgIlla6zvWHw7VIolzQOr6nLuO5XGMi5YbwzU5cTuNksUEjNKOdyNmn7h+ +OrZMpA== -----END CERTIFICATE----- diff --git a/kubernetes/testdata/key.pem b/kubernetes/testdata/key.pem index 050c7c81..8fbbb310 100644 --- a/kubernetes/testdata/key.pem +++ b/kubernetes/testdata/key.pem @@ -1,27 +1,28 @@ ------BEGIN RSA PRIVATE KEY----- -MIIEpgIBAAKCAQEAsu0d6Ug1sXpWMrFSbqRO0WDwdm+60LCQVKk2cn8aUMaFMeL2 -NFNnrjJAVTv5bz3LSKYPR8o0UV7g5FKygquVGl6KeZscHsYP2J9rrehsNMHebzab -z4GbiUEC6dA9JQtAkM4KG67wAWNR0QWVPj0GjjErURqIDI2Wi4wvCsmITLQ3lqyX -34d8P64hYG6UHHPiBvoKTHvxvrV4hR8iomhXoZTnAucg+A7+MdmiAWksV74GGDcH -+ZJsOuVs7dhrPS/KqcPjHRTgvR+eTowiyF4/VGAAYLi1/qO0XV4lbvNUaUqROFMP -rhqAPPV1DQ0AmObKsMPrKZZVo36+g+DIDwUViwIDAQABAoIBAQCEhOAhdmzmHOCY -vQJ7ldAWfUC7x3bKt+q9+XGtDXxVFSNzVlDZYmio+Ojy9+9/N3pHPU6V8iobljTk -hmdWJnTRSfIvrPT/ydvUqgZbkIgL7waqwfxWjPzAhFj/CU8wD4xrc17DMCbsMD5Z -nFPz+8jOKZaWhBr9iSRWCKaSy77aZ2Wr2vB4zm6p0va3/9HjEfrgbBQ73y6VwcDS -00oS0sOSTcT+JaqkBqeasFWgO09D5ZL/qlqf6nLwmN//GyP3Z/se+Ioqe7TCFXlc -mnQk/P9clBtoQfCS/cKnj9KT3EYffsH1ZPkm+DNGkE57SNvVk8P0NqS4yAE1Ku4d -4vXwt885AoGBAMVHOz12+dN/ou7+ytrTY+H20QTNoKi8+oK6VDw2HBC0HNNQ9gGB -DRHTF7UPNuL404YiB6Sw+Ce0SZqzYLOyxSALQE0bmRpCQ343yvP+eKlXXHwqvPjO -WMPImvyEB2Bg+632aHo4UeJZg8ZcDQUWi70cnnPx2hBlz0VxEHO4mkCHAoGBAOgv -cmKZtr30vUTbV5D0cgUU+yN2mbRZ3TptJnF+1QBBEosiDNbnwYCEoD5Slh4bLRts -4eIdLNoNRgN6ZlE5sQEm2f2wfAGPxT5w498155EuOrBhLoeSiX4ZfkuIh1gsVhLt -6nxrPn9AnQkLWVHpoql/T3rGhzJ5imOhQwVphtfdAoGBAJmEJ9ZZ2mk6PtmKjuMg -cu6pedgqB+anQK4wP1KnrMlWz8OlkfpzqW8AfMdZ8pVHmpsbqiT/zexfwJNRGWRd -LkcUWlJmsoqbnBgBZL7gfJcSs5awT2Oyd6LLXcg5GeBnOBMU2BKb9ySUEhZvFXar -J8zfE3MYdmAiSdw48tuKgQbLAoGBALx8F+13P2RBU4ycSx+/cPgzKhSF6Q0Bjpgp -l3W3Mo68RKNyBt5G0UzVXYh6XqceBKYo4849RPXWpKmaKYlyvgBjW7+YD3LtFYA1 -AKdpCQ1QbBBXNACWsssNQvtqYATyKQXA4gQSw29mMpTvA5l9grD6SrkuhP4ysGdk -uBWirvZ5AoGBAIE5F7VBoXD4NQrhJw6g4BncsVZ0nX0EgkGHSiX77uor4RqzKWQe -5xhYXo3z5l/rbEwZofF0+v1dra0TzWNH2QrwaT5nX+PTLpZrD3zJjfx5WNWchwvQ -zjSu+xRa50h20UCCVKtCLpyL5xE/0C33WrkJBTBOxIGg8bPUVOvUiQa3 ------END RSA PRIVATE KEY----- +-----BEGIN PRIVATE KEY----- +MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQClj8HrmT87wM82 +HvoM9CTvxeQn88PqqHsI7YiHuVWHZhtbbEAS5w7uA3n8Bvc124rXGjh1EvYg4pUJ +ICha1jJnKL1rKFZL6/qJcu63PfSzI2AcJLSIzhwhpKJpI60TgFvYxq69GStb1rTZ +G7LnshQHHGKj86mMeLshnhczPn88QiYf91XySn1++pGJ1aClTFufB1/SP7tFc5AY +Vr6hUEeBYP3t2hmawYnShdywqMZN+s5okN1B+7kVSoY750zRx9nYK5MClYaDHLv6 +XjHJ49AzAsVxvykRddX5b2g7HsJPz/WMZTqbPYr2sU/ninSG56ShJpbBeKpcidp9 +/49L7xpbAgMBAAECggEActW4qwK7gmWlFCP+SpfZOtpm+3MwFAZSeInRZlqdwXGI +TixScQoFKAAPT0lBlQC3V6WfPU0unPasawz8EK17fmQapkXvPW/rcgTfIQh/PvWt +hzfKZQ2ZI5i+8fBF7z3b9wswTocztNrCy8hTmjPBgoEkxhWPJ5jiK1otO2UA+bjG +R5VqnyoTP+Iqyw3Bo2KguCu4u9271fiJy/BE4reSAvA8F4C2y/wH/MoMYb5qnTrQ +0wweb1moQKD4XoOG6OIg/QaayhzYJehRCDP1oIvs25pxq+4631jIfNZAe3aewSAp +scMikrqViDBuv7ZsmrKLN1s7AJ4rINwyGAQ4AbqsaQKBgQDWUD5NTuMAUqTzvnNO +5MBZIFLigBNE3LNUhTjUJ82Tcsem3AKLc35yNM1/7DVSVjwSvj2gIPLGbGj8KRwJ +hqLcW4LbQ5tziwmLdV/gDMCsLfkHfH8/SMaJPJ0RcACldI1j5LTlj2gLxDP99+nW +O3m1GqXVu3qjIVhCxMAVJYmpXQKBgQDFw+jBbYh9BXe/DGM7wQHYxVXVIIiFGSrU +rN7Hq7yxx2m35CuIkBMVCx2bqF9bamGlfn51lvwTeVZEfEa38Mcweyhd57f2T4yq +YX81DcHskSiYtqdnAc8aVgcbMd4KKSK2IziT8/orQ4I7MzfSa8KaYV7jep49ey9S +x3o89j8/FwKBgDW7MpORVqprDf4qXqCGC4+M4hr1f19Bchibug6+1/TCzzmPaXfr +AeXCRU9wOkIlarRMTAkMmbGT1pJ6ABSHU+epbdppTd0fG8qCKAJ1UA0bDZeJ6CFG +rrgToVGQ4iiZWyWTXqM7XBuvGlXvRQo4KSB1yOQYN/wUTRuYVow2uBflAoGBAIrH +rgB/Avbo7V1OLhzyln8uC8uiJutv+9R+818fLy16iL+ZCMuufxWXVVG0WCZogtmF +6OxP5dksntM0etP9zWpCItOzFi9tJ4MxI/lxDBMc0mZIVzU72b/beuUkm3J553f1 +Q3DgF0BhAXTVvmiVYly/07zCgWUXmt/2R9ub2kpFAoGAe9ktADFF3hZ8eq7ptOE3 +Ic88I/EUboQpyCTEAn0fpNt75KzeOR17VEC3PsCFj805X00e/9R8l2A24gEDLwUE +w7Gz38mZIS2vrD4tnvyocIiCAMJ8vPpmuv+V5m+2pGksYNFxAS3wLtS8xkuqj+nE +KprJqf5WWTmlhE08A+XMV9c= +-----END PRIVATE KEY-----