From 0ad7b6221b860e122a902056e845299f64629be8 Mon Sep 17 00:00:00 2001 From: Trial97 Date: Mon, 24 Aug 2020 15:16:35 +0300 Subject: [PATCH] Updated TLS certificates --- data/tls/ca.cnf | 39 ++++++++++++++++++++++++ data/tls/ca.crt | 41 ++++++++++++------------- data/tls/client.cnf | 19 ++++++++++++ data/tls/client.crt | 40 ++++++++++++------------ data/tls/client.key | 52 ++++++++++++++++---------------- data/tls/generate_certificate.sh | 10 +++--- data/tls/server.cnf | 24 +++++++++++++++ data/tls/server.crt | 40 ++++++++++++------------ data/tls/server.key | 52 ++++++++++++++++---------------- 9 files changed, 198 insertions(+), 119 deletions(-) create mode 100644 data/tls/ca.cnf create mode 100644 data/tls/client.cnf create mode 100644 data/tls/server.cnf diff --git a/data/tls/ca.cnf b/data/tls/ca.cnf new file mode 100644 index 000000000..185a0502d --- /dev/null +++ b/data/tls/ca.cnf @@ -0,0 +1,39 @@ +[ ca ] +default_ca = local_ca + +[ local_ca ] +default_crl_days = 3650 +default_days = 3650 + +policy = local_ca_policy +x509_extensions = local_ca_extensions +copy_extensions = copy + +[ local_ca_policy ] +commonName = supplied +stateOrProvinceName = supplied +countryName = supplied +emailAddress = supplied +organizationName = supplied +organizationalUnitName = supplied + +[ local_ca_extensions ] +basicConstraints = CA:false + +[ req ] +default_bits = 2048 +default_md = sha256 +prompt = no +distinguished_name = root_ca_distinguished_name +x509_extensions = root_ca_extensions + +[ root_ca_distinguished_name ] +commonName = asd +stateOrProvinceName = Bavaria +countryName = DE +emailAddress = contact@itsyscom.com +organizationName = ITsysCOM +organizationalUnitName = root + +[ root_ca_extensions ] +basicConstraints = CA:true \ No newline at end of file diff --git a/data/tls/ca.crt b/data/tls/ca.crt index 01c2bc177..39642ee96 100644 --- a/data/tls/ca.crt +++ b/data/tls/ca.crt @@ -1,24 +1,21 @@ -----BEGIN CERTIFICATE----- -MIID/TCCAuWgAwIBAgIJAKzSW6RyuAFVMA0GCSqGSIb3DQEBCwUAMIGUMQswCQYD -VQQGEwJERTEQMA4GA1UECAwHQmF2YXJpYTEYMBYGA1UEBwwPQmFkIFJlaWNoZW5o -YWxsMREwDwYDVQQKDAhJVHN5c0NPTTENMAsGA1UECwwEcm9vdDESMBAGA1UEAwwJ -bG9jYWxob3N0MSMwIQYJKoZIhvcNAQkBFhRjb250YWN0QGl0c3lzY29tLmNvbTAe -Fw0xODEwMjMwNzU0NDRaFw0yODEwMjAwNzU0NDRaMIGUMQswCQYDVQQGEwJERTEQ -MA4GA1UECAwHQmF2YXJpYTEYMBYGA1UEBwwPQmFkIFJlaWNoZW5oYWxsMREwDwYD -VQQKDAhJVHN5c0NPTTENMAsGA1UECwwEcm9vdDESMBAGA1UEAwwJbG9jYWxob3N0 -MSMwIQYJKoZIhvcNAQkBFhRjb250YWN0QGl0c3lzY29tLmNvbTCCASIwDQYJKoZI -hvcNAQEBBQADggEPADCCAQoCggEBALeVxB0UL+mGF4eud8kKtCRo1c1k6RdmSkkL -sfNg8moo1hIZqEB9l6OylWl46ArCRfO2Q1Oa+7B4tiZZm/F/Y4jnBKuX/2NZcDNE -fLS6cOT0AFkXnyURg5vrF65SQ0MJsFBYe6qf0zZE+XngnkIJWEqdNl6ru6GoQrsr -tGRoR7VhcNxdybp1UqbSlWpLsXWMZEyL2k5XzQRArosLBEPrhwCsDOgnIRTuiWGS -95EtI5BcDH5UdQJS/bCK62I2Dufe7iTkymi30eQUOCu7wT7Q01eB5stQXXYjsZ7R -9OjdSXLMOluWs3o9wa9nB7ppOTkjX6tnVo5OdZ/P8vnn56/UtTsCAwEAAaNQME4w -HQYDVR0OBBYEFJFnvveUpV6TXiAnG0lGeEvr73qKMB8GA1UdIwQYMBaAFJFnvveU -pV6TXiAnG0lGeEvr73qKMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEB -AHMfoyJyheAyEsBX4jW0MAMg8BBx5m63JeTBOnbzXOI5z+sHg+7v8HjbxKd7DmED -Q6ayOayrKZt07Xfk6USwp/cZQFQAzSi1Fc0SL8S2rfy7LMOS04LfNymTeq+7SAO+ -xkaNKEd49grbfhZHt4bhLQ+JXXMIhGw/fnokHe4ebTZ8lrE0QQhRGBhO0cQqm78U -UlFKT3/NEoasvCDK3XcvPwpD1ucZ3JOiL66DbDR1XMRCGylDvJasUPGYEaytdaO6 -0UtK/Fwm8N4TFbkxzejDieB9QpKiL5fmN7jRKVBEGEU/9SmSj19psWIk3sCE4KW/ -LHFJFuru0lw/b9KnWcLoetk= +MIIDezCCAmOgAwIBAgIJALOeCziTTip5MA0GCSqGSIb3DQEBCwUAMHQxDDAKBgNV +BAMMA2FzZDEQMA4GA1UECAwHQmF2YXJpYTELMAkGA1UEBhMCREUxIzAhBgkqhkiG +9w0BCQEWFGNvbnRhY3RAaXRzeXNjb20uY29tMREwDwYDVQQKDAhJVHN5c0NPTTEN +MAsGA1UECwwEcm9vdDAeFw0yMDA4MjQwOTQ2NTlaFw0zMDA4MjIwOTQ2NTlaMHQx +DDAKBgNVBAMMA2FzZDEQMA4GA1UECAwHQmF2YXJpYTELMAkGA1UEBhMCREUxIzAh +BgkqhkiG9w0BCQEWFGNvbnRhY3RAaXRzeXNjb20uY29tMREwDwYDVQQKDAhJVHN5 +c0NPTTENMAsGA1UECwwEcm9vdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC +ggEBAJonQ51qMAT8jWQXjKw76Bn2gSHrGcbFtQsnxL4Cb5YTe4h31aEOZFR9z/kM +1FxtRKcyG/Hh1ccCB0Y3P6joX1vWpEpfKbYkMie/vIDYNyIpUdrpWvxzA0ouyZL0 +1x1OAIi7fy7YfLw/ON4Uzlzu5XIYzIZgV/6WYVqdRLQWUxzSJbnrD1BuWzXdcYGz +SHHa2o7cnFZaCvjNc4wC3dSmbecLROkFbLwbslY8xydz2xXh+E59dbICm32G7a0Z +oIiJ+MPc68gO4btyA44/xHfPN2YohTapqdB1obybdGWFtsfNcmhhuGE9nCKnyCD5 +Pyf6ks5rdP8asnlAk1pyAA7AGnsCAwEAAaMQMA4wDAYDVR0TBAUwAwEB/zANBgkq +hkiG9w0BAQsFAAOCAQEAUXMgD7Tpra1PZZCfmV2ZrvM9bPI1OoIcOSUwkbFRhAo1 +ma/FI7/4ZyeMKM9caGGTL9y6bpwLS27nEQgQKjsCrZ1Eob2sBwT8dqnidONcjwY2 +8orPWslo4H9lFd67+OOPe2+xIj1WB2NU0JV2F5CVSpGRK0eHjwoIhURqE1CcUA3n +jsw+eaJdqVTR6qOn/MhoBbRqw3CF4W6HXk5r1wKJxS+MEeVawBW3KuiPfsI1IQSe +fA1MU+S/NckJvJRWK9zoJ0tLUpZiGBLlKQ+edyZFkvsa6u2JkTABIF1hsmGXEVY9 +GFaQ9wpQ9NSMp0ovNkC+N90S5aSWpkT4nSnXyzQnVg== -----END CERTIFICATE----- diff --git a/data/tls/client.cnf b/data/tls/client.cnf new file mode 100644 index 000000000..3e9c4211b --- /dev/null +++ b/data/tls/client.cnf @@ -0,0 +1,19 @@ +[ req ] +prompt = no +distinguished_name = server_distinguished_name +req_extensions = v3_req + +[ server_distinguished_name ] +commonName = localhost +stateOrProvinceName = Bavaria +countryName = DE +emailAddress = contact@itsyscom.com +organizationName = ITsysCOM +organizationalUnitName = client + +[ v3_req ] +subjectAltName = @alt_names + +[ alt_names ] +DNS.0 = localhost +IP.0 = 127.0.0.1 diff --git a/data/tls/client.crt b/data/tls/client.crt index 2775d5b27..19983aa7a 100644 --- a/data/tls/client.crt +++ b/data/tls/client.crt @@ -1,22 +1,22 @@ -----BEGIN CERTIFICATE----- -MIIDqDCCApACCQDPjpvIrCbmjTANBgkqhkiG9w0BAQsFADCBlDELMAkGA1UEBhMC -REUxEDAOBgNVBAgMB0JhdmFyaWExGDAWBgNVBAcMD0JhZCBSZWljaGVuaGFsbDER -MA8GA1UECgwISVRzeXNDT00xDTALBgNVBAsMBHJvb3QxEjAQBgNVBAMMCWxvY2Fs -aG9zdDEjMCEGCSqGSIb3DQEJARYUY29udGFjdEBpdHN5c2NvbS5jb20wHhcNMTgx -MDIzMDc1NDQ1WhcNMjgxMDIwMDc1NDQ1WjCBljELMAkGA1UEBhMCREUxEDAOBgNV -BAgMB0JhdmFyaWExGDAWBgNVBAcMD0JhZCBSZWljaGVuaGFsbDERMA8GA1UECgwI -SVRzeXNDT00xDzANBgNVBAsMBmNsaWVudDESMBAGA1UEAwwJbG9jYWxob3N0MSMw -IQYJKoZIhvcNAQkBFhRjb250YWN0QGl0c3lzY29tLmNvbTCCASIwDQYJKoZIhvcN -AQEBBQADggEPADCCAQoCggEBAL1OZEFRnQakuK3R5fNu9oQg3yaYgwjYtVQ2N6qO -X3d0Ts2MJmac02GRGgEs8K/mKO4WuCk9lwSaky7sMzogQ8yQdSCMO2/BhB6YIq9T -77toZZrrnoirDS9rdDHsiuZHPWv/bZySrsNXvOn2F0TQcod7YYy/gXZHR8sy9ZyS -f/Ohpjvnximc3Vxa0OtxWLwpcFZ1IJQupfRgIZ5ZYgw3FDx7QZvGdgcpfZhgZEdy -Pd05EjzZp40SIBd16zsJmptUjeapIOPVKZicRPE5HD0z6S2BAEUq03eZEOa476pp -VV2A82XxELgD5f6YLWo0Dz643nifzEslrXaAeef4e5CEcz0CAwEAATANBgkqhkiG -9w0BAQsFAAOCAQEAqCzoyjob3vRXD+o11E25DPTaeQnsE8F717s0A4UnTz97nh3M -ba5RDXgt8ZAZIks0MKz/9DXtFREkzU023o+raSnPKbukYkm75w46hBF36p7C0Wz2 -/fBJbGDovXISESsAXBxwJ8HEOarY9G8PGrfNeLJgXRXlJHY7HKW1Fsz6TyNYOYzs -nWNvYmwVKPPCWB2Zj0bCwcalKs7DvGkdWEtkH63Jn5pucAh84T8lpHlNA933ZXkh -sh+mzd136xaH1JsDQkB+mE8mmy/W57Ny/wDH300/2uqPk/lTVk3E2UBWmSUMHh/i -4H2NdNYao9PskcD0f7qnqFic267AvHcqaOwxLg== +MIIDkTCCAnmgAwIBAgIJAL99XIKjFjrwMA0GCSqGSIb3DQEBCwUAMHQxDDAKBgNV +BAMMA2FzZDEQMA4GA1UECAwHQmF2YXJpYTELMAkGA1UEBhMCREUxIzAhBgkqhkiG +9w0BCQEWFGNvbnRhY3RAaXRzeXNjb20uY29tMREwDwYDVQQKDAhJVHN5c0NPTTEN +MAsGA1UECwwEcm9vdDAeFw0yMDA4MjQwOTQ3MDBaFw0zMDA4MjIwOTQ3MDBaMHwx +EjAQBgNVBAMMCWxvY2FsaG9zdDEQMA4GA1UECAwHQmF2YXJpYTELMAkGA1UEBhMC +REUxIzAhBgkqhkiG9w0BCQEWFGNvbnRhY3RAaXRzeXNjb20uY29tMREwDwYDVQQK +DAhJVHN5c0NPTTEPMA0GA1UECwwGY2xpZW50MIIBIjANBgkqhkiG9w0BAQEFAAOC +AQ8AMIIBCgKCAQEAs1zgVVzZGJsStJKIWdNtmxykSwoJv14XKo4nv12+5T1dpftK +DCea6v1SyXgO02zJQ5GdhOntpeT6WHYuJ11k9Ys+gps39QODb30hic9/HbvoxAX0 +zpOFvmkEMuN2qzuaPk2HehmbZiTF+IoVhT789a8tpvK+ZMh3YOzde3fyQpHdTw+e +EQUzIPMOwGPRVmWlZoppsgNqOfcEI2dj4NuVPg2B+eUQ7QjXIJzijfc2EoPTdyYY +UadQl94JrVJRMHtEzVgeuLKoVj0/Nc31e34waWatXliDrCqiwy2TPHl0Tq4rA0It +s/yqVZuL2u/0uRNBlrBG/fRQ+VXpZZdZF2GHEQIDAQABox4wHDAaBgNVHREEEzAR +gglsb2NhbGhvc3SHBH8AAAEwDQYJKoZIhvcNAQELBQADggEBAIcZT4MLhePUlBbg +nJ+pGuNSggTxj98a0KuLvtn5eRiR6LFEvw7wYH6dyjKSxk0oQjEYrsnSpwyGnTat +RkqeD9zu2GNVDcgHuNVd5YVTx+7SCNS5LadS6wxJwADITfivDNgq1qPUCe5/NHh/ +9p8doiLLyBH/cbaP83cjZhqmWjspaOkVhK80aS4vSZTpla8HAPQatEpvszdjN1Ov +Y8mAxWDzgGmuk5S7b97sep9UYlW67sqgZuik9EJts/7Tngz+jlZ5qei4CJ0FRegz +V37Wv+p/dp+hTrWUNtsGRvjPprlX9EKrS2X/LvCGchwuOVsXy0XEwcp/NaHuIQuh +9LgSisY= -----END CERTIFICATE----- diff --git a/data/tls/client.key b/data/tls/client.key index 7c5207565..ae92b0bbb 100644 --- a/data/tls/client.key +++ b/data/tls/client.key @@ -1,28 +1,28 @@ -----BEGIN PRIVATE KEY----- -MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC9TmRBUZ0GpLit -0eXzbvaEIN8mmIMI2LVUNjeqjl93dE7NjCZmnNNhkRoBLPCv5ijuFrgpPZcEmpMu -7DM6IEPMkHUgjDtvwYQemCKvU++7aGWa656Iqw0va3Qx7IrmRz1r/22ckq7DV7zp -9hdE0HKHe2GMv4F2R0fLMvWckn/zoaY758YpnN1cWtDrcVi8KXBWdSCULqX0YCGe -WWIMNxQ8e0GbxnYHKX2YYGRHcj3dORI82aeNEiAXdes7CZqbVI3mqSDj1SmYnETx -ORw9M+ktgQBFKtN3mRDmuO+qaVVdgPNl8RC4A+X+mC1qNA8+uN54n8xLJa12gHnn -+HuQhHM9AgMBAAECggEAW2tdDRI9s7SenwqLcwj2MY6yVTA3r3D/+IAKV+pTfhuD -5s20yb8YcbiiB0lNnpSW1YvROdFNeeKwC2vzvTFRrJtihOpT1b9tb1zm+yac0jMz -RiJdOADq6CiLP4TM+zISHnKG26MWlK1tRMscJ5ZGiNjzngXpnlYD/MRKSmeRNPTZ -64RTztXzfso4FA3vs8YB9ZbYTsdW+EK1cVsFee2ZqkZBv6zrP+xv7+8UYppBbgj4 -Tac3SCjRxYwkPOIlfl3fHnP6ZrwW5jxMtWhI59xAK2Kccpks7xOH4v6rW/VJQXPT -ifYhb2KOXhL9rNSU9h5NNr5GikLDGCzQ5XGWg/Bi4QKBgQDf/okcRSj1zRQ+xXNv -STAol+3akINsgBsOVX93MHwEsRgIHkNR+im/6gSV3AaP68ydVYWLuTLGfWxEU8ed -gstRE8Pr6eNmthnwSW3DJkNWL4I8bF7dearsQoyLN5WfkzQEWdh3djt6r0MXRMU2 -5cs+rW7iAUHZTnqIxSX19fobeQKBgQDYWwE+jcBt5CUVqziY+gy4OKEX8aqMCQID -nb8pSZlmFCLcxyN1vXT/BuGn63v0JpyjcOvvP2UhRNTwgrIWVBk2gxEjUiwVe/Vq -4KZnfpRMPCaUPjdXrWlNZWiT5FSw8Gn22sYTBTsULmBCUfeo0gneCTxXnpvaNx4T -/w7lfcDg5QKBgCOuoJjoS4YcjUUSnzjzJ8DPswxGSSlXnvfBlvSdvKPisjlY2NCO -UWhJF0HoMwNqRMYrgYKolfYYtM6NqhblZw4bX/KM57TM/YTRrbKQvdlU6CJIATS2 -1Qud7lWfHS62fGrVBS7CnucEVGO4iNId+Sqa5jcKjDrZzZtMDKgJ7zXBAoGBALoG -1bURcOmMBw7wn8N5DMLBflH2KuwpOqAdXKaFb+5DVg5681RjSFuXcSNO6M9u+7PU -fijCW5QVePorhjCIsv0aCPxTxS/b25LAApRuU9iQx6MjM7ahli9ECH1REDjrHlFw -nmrwTnH1xjKAA/AWWQGe81FrQRqJ1cTfw9EzJUq5AoGBAKG0pNr6QCuqLIivYzsZ -jI182BcElOUykVFbkjiD4t/X2kfa1iICRTSKzMZTpMEa8UKScruoVA+u5rmOlGeh -o8Mf2B97dkRG3mBq6lS9WooiNkxX5/HYIn79eh2hNdYgFxIqNkMnGYjIgKIx/WZQ -1jbFm82iOdim39an60MwRpl6 +MIIEvAIBADANBgkqhkiG9w0BAQEFAASCBKYwggSiAgEAAoIBAQCzXOBVXNkYmxK0 +kohZ022bHKRLCgm/Xhcqjie/Xb7lPV2l+0oMJ5rq/VLJeA7TbMlDkZ2E6e2l5PpY +di4nXWT1iz6Cmzf1A4NvfSGJz38du+jEBfTOk4W+aQQy43arO5o+TYd6GZtmJMX4 +ihWFPvz1ry2m8r5kyHdg7N17d/JCkd1PD54RBTMg8w7AY9FWZaVmimmyA2o59wQj +Z2Pg25U+DYH55RDtCNcgnOKN9zYSg9N3JhhRp1CX3gmtUlEwe0TNWB64sqhWPT81 +zfV7fjBpZq1eWIOsKqLDLZM8eXROrisDQi2z/KpVm4va7/S5E0GWsEb99FD5Vell +l1kXYYcRAgMBAAECggEAByPuZleQ6PLbdsbSmMja9y7Xt4kJxE2JnI8WM/8WZ2fe +/4mWdA9rkmlNT2nxJSeSh5cXb0AkztLjyHvD8Js+Nqw5a9ekDaP7KogPur3A8L0X +Uh5ulX6391GU8jWt9rkjtdE+UHUOg615GCDfJHPSfDFiHuBRBhAY+InVc2HeChpV +ZgWifhgrfzXhk7ziNP6VmRb2pV1LtAV3B5a8fX4kmoztzVy+OZ/nHAAGNg0WsW+P +SOu5RPErKsDjVLycFLMDWn6Pd5x0jNx8tOykCqtFAF3HxeqlFIOMqb3uVeJm01Lm +xxR0LPz4y3meXeLMwTJMXu0Jy5SUipUFGN8j5wVqpQKBgQDZRHL/4WKaOpkDd92B +RTODbtI70yybhqnFn6u6ejfmjDB4csTxcGM1YClwhKQiedwiS/ZXnTDxHzc/3VbZ +a/BGx81ZsgCYJIHD5XyeU9yPuirRU6Kd2wBawWL1j5EC6yj5OhXKJuu2ALZFhrCt +GDHPuhajQQsZp8ELGy6Vhfnj9wKBgQDTVo4LnlmJW/Z4oOMkN/l1ThwX2+ayT+NE +fqdXvbWhFf5dMn2sc7SSjWoaZ/uTsSkkai4Q5z8entDGtZfkW71S2Oex4CQpxeSJ +/dx7CXo3Cv/LlkwGR6J2lhftqbIco2ynb5C+Evz1dxl9t+w0sPepq8se0fhpvMYP +EWCLOu2bNwKBgHvKACvCYse081GCjfYFU6BjF+12GEhUpY4vt0x8LjVxUnyOB5/4 +hM34iCPPryTlgYMY/LZWnXgEbRo6Ji2izjfFxz5/qM8Gndjbe/FJnrVVQOgbWt/N +05nh7Vwz/E9JZQL7EUcofcwpA7EBWNCGpHrSb+t8N7LaXabSSexvdT1pAoGAdQcy +I2bth+2/326gOVcxsW6uidvAtS8d17kW67Rm1qv6LhuekheEf78FaVf5bQCmmr6d +gci8IDWrwM2gLdlLToxESTCodeVat7s3E37dCYvyuAcjVDro0SguWfIlakxpB5L1 +IPwczcTE/eQSTd9NVcyG7yswl0TsnD1wK8lW+CMCgYB480xtZxIQabyUwwoRXeIh +WNcQZwMmf8CvKCEMr8R2cwmTYT9yY2ENsyJ0hrcaB9dI3fvakgBq5kVNirl4Zs6A +V+9pgLoN/CXqkySTunKuv1YpVS2kTF0GE1EDVeRXdIeKifG288mwRlI9oWNIfhc/ +0wZphNrjs3+8xILIcJE7WQ== -----END PRIVATE KEY----- diff --git a/data/tls/generate_certificate.sh b/data/tls/generate_certificate.sh index 7357c7e92..94ec5e700 100755 --- a/data/tls/generate_certificate.sh +++ b/data/tls/generate_certificate.sh @@ -1,18 +1,18 @@ #!/bin/sh # Generate self signed root CA cert -openssl req -nodes -x509 -newkey rsa:2048 -days 3650 -keyout ca.key -out ca.crt -subj "/C=DE/ST=Bavaria/L=Bad Reichenhall/O=ITsysCOM/OU=root/CN=localhost/emailAddress=contact@itsyscom.com" +openssl req -nodes -x509 -newkey rsa:2048 -days 3650 -keyout ca.key -out ca.crt -extensions root_ca_extensions -config ./ca.cnf # Generate server cert to be signed -openssl req -nodes -newkey rsa:2048 -days 3650 -keyout server.key -out server.csr -subj "/C=DE/ST=Bavaria/L=Bad Reichenhall/O=ITsysCOM/OU=server/CN=localhost/emailAddress=contact@itsyscom.com" +openssl req -nodes -newkey rsa:2048 -days 3650 -keyout server.key -out server.csr -extensions v3_req -config ./server.cnf # Sign the server cert -openssl x509 -req -in server.csr -days 3650 -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt +openssl x509 -req -in server.csr -days 3650 -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt -extfile ./server.cnf -extensions v3_req # Generate client cert to be signed -openssl req -nodes -newkey rsa:2048 -days 3650 -keyout client.key -out client.csr -subj "/C=DE/ST=Bavaria/L=Bad Reichenhall/O=ITsysCOM/OU=client/CN=localhost/emailAddress=contact@itsyscom.com" +openssl req -nodes -newkey rsa:2048 -days 3650 -keyout client.key -out client.csr -extensions v3_req -config ./client.cnf # Sign the client cert -openssl x509 -req -in client.csr -days 3650 -CA ca.crt -CAkey ca.key -CAserial ca.srl -out client.crt +openssl x509 -req -in client.csr -days 3650 -CA ca.crt -CAkey ca.key -CAserial ca.srl -out client.crt -extfile ./client.cnf -extensions v3_req rm ca.key ca.srl server.csr client.csr diff --git a/data/tls/server.cnf b/data/tls/server.cnf new file mode 100644 index 000000000..8929ce347 --- /dev/null +++ b/data/tls/server.cnf @@ -0,0 +1,24 @@ +[ req ] +prompt = no +distinguished_name = server_distinguished_name +req_extensions = v3_req + +[ server_distinguished_name ] +commonName = localhost +stateOrProvinceName = Bavaria +countryName = DE +emailAddress = contact@itsyscom.com +organizationName = ITsysCOM +organizationalUnitName = server + +[ v3_req ] +subjectAltName = @alt_names + +[ alt_names ] +DNS.0 = localhost +IP.0 = 127.0.0.1 + + + + + diff --git a/data/tls/server.crt b/data/tls/server.crt index f0237baae..b8176e627 100644 --- a/data/tls/server.crt +++ b/data/tls/server.crt @@ -1,22 +1,22 @@ -----BEGIN CERTIFICATE----- -MIIDqDCCApACCQDPjpvIrCbmjDANBgkqhkiG9w0BAQsFADCBlDELMAkGA1UEBhMC -REUxEDAOBgNVBAgMB0JhdmFyaWExGDAWBgNVBAcMD0JhZCBSZWljaGVuaGFsbDER -MA8GA1UECgwISVRzeXNDT00xDTALBgNVBAsMBHJvb3QxEjAQBgNVBAMMCWxvY2Fs -aG9zdDEjMCEGCSqGSIb3DQEJARYUY29udGFjdEBpdHN5c2NvbS5jb20wHhcNMTgx -MDIzMDc1NDQ0WhcNMjgxMDIwMDc1NDQ0WjCBljELMAkGA1UEBhMCREUxEDAOBgNV -BAgMB0JhdmFyaWExGDAWBgNVBAcMD0JhZCBSZWljaGVuaGFsbDERMA8GA1UECgwI -SVRzeXNDT00xDzANBgNVBAsMBnNlcnZlcjESMBAGA1UEAwwJbG9jYWxob3N0MSMw -IQYJKoZIhvcNAQkBFhRjb250YWN0QGl0c3lzY29tLmNvbTCCASIwDQYJKoZIhvcN -AQEBBQADggEPADCCAQoCggEBALdQ15Cmd8wPyiuhE2GFeOdhb2CdPFb6EYrHzVrJ -iEzrAv52SRp75xleFzVJ+jiAJQ00P6ladgEOKu46Sl+2s3KlK5f25QwbuSUzMPF2 -QF7HtJTsPaFDaIyVJnqPZz8ksTtijYzWCDU23F7LWAq75EsATI/2oeBtcu9vXxJi -q3YzHidhvW0GwsQkPPdyXzakDFqKUcbP1+S8eSI+uYSGy+Xf5C1j5c2jfbcsEev3 -zqKCQzed9ldPlkWd77z5IUsjnfAM276BLQnQ2RbMjtlWRKTS50eiB2sur5ttq89z -vYK757cnkL3nmAwOjPKVfbXjOi9TwVmceXZkDB+m2FMm5hcCAwEAATANBgkqhkiG -9w0BAQsFAAOCAQEAhkJpYysSG7RckAwa8Plx7lhI+l4tokOSafJOGy3228kCBpBc -8huESqtqlVn0+yYvE2Dtg14RY8GRGzSDocjHN8ZJYuDrMCz94OZljvhtIlrFAloK -38CsGZHaKqBV2u7hRoiGRyc+hLebQpIv6ruHkfg1RGERh4DnJtwzQ0fAxauk9MlA -WNm4t6YM6RSxwwUh1O68W4+j4dImNZ2kqFFLivP557Ntane6GKogfuO9uM2QZEDE -CfMouBymzO8m0Ze+hvy8rEqndQ+ocCc2KqzUiCmmex+1H3VEMc9GPoybPYUjR2TI -34h8vJYMonLsgl4E1l5EgfASbp4X9KILWlgMkg== +MIIDkTCCAnmgAwIBAgIJAL99XIKjFjrvMA0GCSqGSIb3DQEBCwUAMHQxDDAKBgNV +BAMMA2FzZDEQMA4GA1UECAwHQmF2YXJpYTELMAkGA1UEBhMCREUxIzAhBgkqhkiG +9w0BCQEWFGNvbnRhY3RAaXRzeXNjb20uY29tMREwDwYDVQQKDAhJVHN5c0NPTTEN +MAsGA1UECwwEcm9vdDAeFw0yMDA4MjQwOTQ2NTlaFw0zMDA4MjIwOTQ2NTlaMHwx +EjAQBgNVBAMMCWxvY2FsaG9zdDEQMA4GA1UECAwHQmF2YXJpYTELMAkGA1UEBhMC +REUxIzAhBgkqhkiG9w0BCQEWFGNvbnRhY3RAaXRzeXNjb20uY29tMREwDwYDVQQK +DAhJVHN5c0NPTTEPMA0GA1UECwwGc2VydmVyMIIBIjANBgkqhkiG9w0BAQEFAAOC +AQ8AMIIBCgKCAQEAunjN3hMRhVB9A7K3ED7/9+ZxJ1W4MbAyZqdIBUHCi7Nbjxtk +B2fF9XMWINOi3JYEsLA01m7UI876TGTFNON23HpB0EL77SFBz6Uok/flEzAV7ONe +6txkiagXVwRNfvyuZf8TngO4Y7ryXiDJgCr6iXYr92RWu3wuOMRYAlLU/0VtknBh +XgT2fOj5t7Rc/sTKw9PpLD0a+kBCPpgJ4aixCqCZ5Aqd7KCbh3mIrtnidqwb/VGZ +yTIHuxwgqe5F/QZT7D7+r00sOSSHRdvx/zMxTXbFAUSG1KQnXPYjesDZJK5KAq+R ++4IEUJcH4LX8MRthCHT7DpQTTGstQnGIYwpBqQIDAQABox4wHDAaBgNVHREEEzAR +gglsb2NhbGhvc3SHBH8AAAEwDQYJKoZIhvcNAQELBQADggEBAHQsxBK3gsrzGAcY +n2ZFHqBufIlqxy5kP4LZ/a8QzTZuBuCTI0xwpPBVRVNaFBBhfRW32YPSM2VWptk0 +BeTWBWJE5Fh19D/SpJw/ttIQcZG1bTjyjoD2kD0Vnqvd4TGljKh1hOMgcmqMC+yy +tnIGGA8SGAm8YXMJIhfZovGz7Kv23a76opHOJfcE00LProKE7oKpfi168TBmNKXt +jgEe5mCXZE3IijwA+E95SFNJKatxhrI5gLewav5eSzSb/yn5a0Q8cFIr9rjQL1VT +bDFzMNMRxgvP/YVxojXJvkUEreXYe9sIE53GYU6mHaQ0o7U3BvuLhiLox3HvOeM2 +1IsvABk= -----END CERTIFICATE----- diff --git a/data/tls/server.key b/data/tls/server.key index 9d17fb2c4..92da7351b 100644 --- a/data/tls/server.key +++ b/data/tls/server.key @@ -1,28 +1,28 @@ -----BEGIN PRIVATE KEY----- -MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC3UNeQpnfMD8or -oRNhhXjnYW9gnTxW+hGKx81ayYhM6wL+dkkae+cZXhc1Sfo4gCUNND+pWnYBDiru -OkpftrNypSuX9uUMG7klMzDxdkBex7SU7D2hQ2iMlSZ6j2c/JLE7Yo2M1gg1Ntxe -y1gKu+RLAEyP9qHgbXLvb18SYqt2Mx4nYb1tBsLEJDz3cl82pAxailHGz9fkvHki -PrmEhsvl3+QtY+XNo323LBHr986igkM3nfZXT5ZFne+8+SFLI53wDNu+gS0J0NkW -zI7ZVkSk0udHogdrLq+bbavPc72Cu+e3J5C955gMDozylX214zovU8FZnHl2ZAwf -pthTJuYXAgMBAAECggEAE559U6fdTmOqOX0lu9wzEmBlMSvi11QwKHA11C+ZfNHy -IhW6wTDdjON7DGL8equMS5t57MAXvQktIw3uA8xj7DMtNThhTyhwakDOTilfvkUV -WJLoDahPOiyET72lSSa+KSLlD1ugyUEz2JletNdjGXvQtd+pd4F/OYzr2eXhf+bO -RdUGuHJWYrww5rC5EwYj29acthayk3vRWmPWegIITnJWMayiT+K03k3nJjBwF8bC -d9WG9u9CTlvePC8ccoQvXXtMClQ3Ino2Hl9okJmjzrQ6Q+2jdHPTddapUHV1gA0V -PG694FEk18tYOQrD8+c8yIhbPqNC3a7zATX3yh9XQQKBgQDbO+aBNo39HBiAVXEO -39yKXRftyIxkpCUC0lo0N0NGdaTlOBNPzDsrBAO1C9Eoy/wmocVqp86Jml6oWoEX -IqRCx+hg9SfL4GufE3T5ca6zlxGIj6NkTzeqOqI4rP9WyeJVXrtBQ47nsM9GH/uF -yWfdUYVTGnY3Xm3vCQM0Ev6NUQKBgQDWDukTR+EgkkWQSqRAXKXS8cAKCRatygfG -Fw7BF4T86rIaekjr+hIWE1bhuf0aL+n2YuTtC+jzpRvtO0sfogOhdwcm//EDez+v -OYXnA9xBZs9sSltdnOdUcindmJu/gQ8auKI+blZ05xoxkQOhsKdthKK2sj89wJdD -/Wt4cv7C5wKBgQCh9tnvQf+aK8SKIxVYeNg0vFvuRsg5ne7d68vKYb1o84bz9P6H -aImZ2OhoO6e1bSYG4GK5zelPTWV7GQnfrq8NyySJZPSWsWCw8C3uDyeS9Bt2+S8r -7z5fm9u25U/qrVFx4n+S0rdjwgMPepdWmpoKLqzB3X3SoAe1ncHpGdNHUQKBgQC8 -xxeMNnb3Z6hLsVgbntlrKGKpNwy2JZcnfow3hAt3lW+O5EtNORQcPeAAYCszng/i -h6LG3xsJTJJNbF47PoGfMz6uiUc/P8GRQdSyQHhNgWLqaMUc0NQ+aBQ95mlswV/V -vADxuBMtM+ao0e/297kgX7m0D4ywZBnDD0ppRlkg/wKBgBCmO6YNS8XL2cLGzHOi -EHSP3+XWDXsQLtqpHNxmeok1W04AkB1LehvPqC9BmhVUPpmgjBZA7mvjUO66bZSV -DMcyOm6EL5fBa8XW3O3P9+gsnNRp+xvgBSS4mDZU42L7SYYGOZoRw8Y2c6CXLBXq -UYBQMIWyoNJWQ9yzpCjfqnB8 +MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC6eM3eExGFUH0D +srcQPv/35nEnVbgxsDJmp0gFQcKLs1uPG2QHZ8X1cxYg06LclgSwsDTWbtQjzvpM +ZMU043bcekHQQvvtIUHPpSiT9+UTMBXs417q3GSJqBdXBE1+/K5l/xOeA7hjuvJe +IMmAKvqJdiv3ZFa7fC44xFgCUtT/RW2ScGFeBPZ86Pm3tFz+xMrD0+ksPRr6QEI+ +mAnhqLEKoJnkCp3soJuHeYiu2eJ2rBv9UZnJMge7HCCp7kX9BlPsPv6vTSw5JIdF +2/H/MzFNdsUBRIbUpCdc9iN6wNkkrkoCr5H7ggRQlwfgtfwxG2EIdPsOlBNMay1C +cYhjCkGpAgMBAAECggEAJkiNA43op/UpZWv4l5ZHmQ6vpoK7yT/CaT7o02N33JSb +NJtMAxU0GDtjjKPGqQEHv3q9rlScqylgS/TYZA5bJdLX1jkaXcnZKBdhaFeZqUHT +Dopzv0Y2QejHue7BNlQMPhaLYYKkBZ2pCtgyZmTsgPJI/oaUI/PPzYnKA9gbsLin +FZ7O8xQx9W8TXdtUymsD+M8+Qs3Anj1nYIVpKjDo3LRl+YkYNvbQJlH2nXWVGgyt +TkJWLHtNFBH7SvWyFkUes+dp4WV9ixFXZ2TIuWYRfnacUhwlx3kFA8kA1qBOaU7S +NwMKya/0h2IFauP2uE9MK9PMUeZ1Ar1VOueBtWpf7QKBgQDzSfBg9kwl7QTK3ltO +sy+TK+CIsWEaRj2U9ixWhD34EgJ3zR3GLzRuhtrUhV+pNSVvQXLDQPAUbpIxKEZl +VoBM0pBKSgsQPxKaCkA55Luqq76/UJEWR86BFUHM4j9OJNZGtHXRftPijp9+xOqC +Aq8KPUo5/5fDuXvevZSBrj6W1wKBgQDENuvySivUFsmp/TMHX9mDs9H79m98vH7t +LMeHJ7kXWXAiKrr11quID2a6t9Q+7s22ZoZgSWeJLoh2sKayb6DkvPvSnPEAPqmO +2RYJm+NoVONoD9ysA8qV/0oov8ryL9LsRI4oIP833CMDwRua0042C/2QTLYfy4NB +pxPst7lbfwKBgQC3FXJvFYqyk86ieHkQHap0v3VGiO4BHtDjE+rD5NrZn3v5+gMp +DIcRkiyF+CTIKnWUZxVdOLYzOg6MLbnkMxd0OJVbQqNWw5BVGdfBeY983ag7Qv8c +XEdcPsn4zF5FiVUzekSbtizv9tKyTLAJzMk7FGqSgPUN1r0QH2zttlnlmwKBgEOf +Ee2sdjJfsBxvcHioJdRn0oRdR8rbQ3sFpbYEkJtlbWm5BDnZQ8BeXm8XD4So1Ch6 +aPEiGxaB/PG6q5hvNCngn4DUKZKGBfV/B0NEgDjimISygsCdheHv22TzxEN3C9/1 +OHDH/m0H5uFSWesfy6KAu2BRr6qBfrjPleRM5QqNAoGBANAeCsu49gSQlJuw9Kfz +zwCqPnjCslFD+RyeIvioKdv4442W1VrrQfzleQCwBf+epAbg2HkW5TPe2y5LHmQ4 +QD4aol3acc+dDHjtwmRjV+tCu0DLeJR0mfLG8YxWgbiGUlXKyKBAoRmbZuNCJAzP +II+P8F+O7ecnxHhTd/MhMG83 -----END PRIVATE KEY-----