puppet 8.0.1-universal-darwin → 8.2.0-universal-darwin
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CODEOWNERS +5 -5
- data/Gemfile.lock +47 -39
- data/ext/project_data.yaml +1 -1
- data/lib/puppet/defaults.rb +37 -7
- data/lib/puppet/http/client.rb +12 -5
- data/lib/puppet/http/service/ca.rb +32 -2
- data/lib/puppet/node/environment.rb +6 -4
- data/lib/puppet/pops/evaluator/deferred_resolver.rb +20 -3
- data/lib/puppet/ssl/oids.rb +2 -0
- data/lib/puppet/ssl/ssl_provider.rb +1 -1
- data/lib/puppet/ssl/state_machine.rb +143 -14
- data/lib/puppet/thread_local.rb +1 -4
- data/lib/puppet/version.rb +1 -1
- data/lib/puppet/x509/cert_provider.rb +29 -0
- data/locales/puppet.pot +2346 -2310
- data/man/man5/puppet.conf.5 +31 -3
- data/man/man8/puppet-agent.8 +1 -1
- data/man/man8/puppet-apply.8 +1 -1
- data/man/man8/puppet-catalog.8 +1 -1
- data/man/man8/puppet-config.8 +1 -1
- data/man/man8/puppet-describe.8 +1 -1
- data/man/man8/puppet-device.8 +1 -1
- data/man/man8/puppet-doc.8 +1 -1
- data/man/man8/puppet-epp.8 +1 -1
- data/man/man8/puppet-facts.8 +1 -1
- data/man/man8/puppet-filebucket.8 +1 -1
- data/man/man8/puppet-generate.8 +1 -1
- data/man/man8/puppet-help.8 +1 -1
- data/man/man8/puppet-lookup.8 +1 -1
- data/man/man8/puppet-module.8 +1 -1
- data/man/man8/puppet-node.8 +1 -1
- data/man/man8/puppet-parser.8 +1 -1
- data/man/man8/puppet-plugin.8 +1 -1
- data/man/man8/puppet-report.8 +1 -1
- data/man/man8/puppet-resource.8 +1 -1
- data/man/man8/puppet-script.8 +1 -1
- data/man/man8/puppet-ssl.8 +1 -1
- data/man/man8/puppet.8 +2 -2
- data/spec/fixtures/ssl/127.0.0.1-key.pem +107 -107
- data/spec/fixtures/ssl/127.0.0.1.pem +52 -51
- data/spec/fixtures/ssl/bad-basic-constraints.pem +56 -56
- data/spec/fixtures/ssl/bad-int-basic-constraints.pem +53 -53
- data/spec/fixtures/ssl/ca.pem +54 -54
- data/spec/fixtures/ssl/crl.pem +26 -26
- data/spec/fixtures/ssl/ec-key.pem +11 -11
- data/spec/fixtures/ssl/ec.pem +33 -32
- data/spec/fixtures/ssl/encrypted-ec-key.pem +12 -12
- data/spec/fixtures/ssl/encrypted-key.pem +108 -108
- data/spec/fixtures/ssl/intermediate-agent-crl.pem +26 -26
- data/spec/fixtures/ssl/intermediate-agent.pem +56 -56
- data/spec/fixtures/ssl/intermediate-crl.pem +29 -29
- data/spec/fixtures/ssl/intermediate.pem +53 -53
- data/spec/fixtures/ssl/oid-key.pem +107 -107
- data/spec/fixtures/ssl/oid.pem +51 -50
- data/spec/fixtures/ssl/pluto-key.pem +107 -107
- data/spec/fixtures/ssl/pluto.pem +52 -51
- data/spec/fixtures/ssl/renewed.pem +67 -0
- data/spec/fixtures/ssl/request-key.pem +107 -107
- data/spec/fixtures/ssl/request.pem +50 -48
- data/spec/fixtures/ssl/revoked-key.pem +107 -107
- data/spec/fixtures/ssl/revoked.pem +51 -50
- data/spec/fixtures/ssl/signed-key.pem +107 -107
- data/spec/fixtures/ssl/signed.pem +49 -48
- data/spec/fixtures/ssl/tampered-cert.pem +51 -50
- data/spec/fixtures/ssl/tampered-csr.pem +50 -48
- data/spec/fixtures/ssl/unknown-127.0.0.1-key.pem +107 -107
- data/spec/fixtures/ssl/unknown-127.0.0.1.pem +50 -49
- data/spec/fixtures/ssl/unknown-ca-key.pem +107 -107
- data/spec/fixtures/ssl/unknown-ca.pem +54 -54
- data/spec/integration/application/agent_spec.rb +63 -13
- data/spec/integration/application/apply_spec.rb +14 -0
- data/spec/integration/http/client_spec.rb +16 -0
- data/spec/lib/puppet/test_ca.rb +3 -10
- data/spec/unit/application/lookup_spec.rb +1 -0
- data/spec/unit/defaults_spec.rb +2 -40
- data/spec/unit/file_system/path_pattern_spec.rb +15 -0
- data/spec/unit/http/service/ca_spec.rb +83 -0
- data/spec/unit/ssl/ssl_provider_spec.rb +20 -0
- data/spec/unit/ssl/state_machine_spec.rb +143 -3
- data/spec/unit/x509/cert_provider_spec.rb +49 -0
- data/tasks/generate_cert_fixtures.rake +4 -0
- metadata +5 -9
@@ -1,69 +1,70 @@
|
|
1
1
|
Certificate:
|
2
2
|
Data:
|
3
3
|
Version: 3 (0x2)
|
4
|
-
Serial Number:
|
4
|
+
Serial Number: 6 (0x6)
|
5
5
|
Signature Algorithm: sha256WithRSAEncryption
|
6
6
|
Issuer: CN=Test CA
|
7
7
|
Validity
|
8
8
|
Not Before: Jan 1 00:00:00 1970 GMT
|
9
|
-
Not After : Jun
|
9
|
+
Not After : Jun 24 21:18:00 2033 GMT
|
10
10
|
Subject: CN=127.0.0.1
|
11
11
|
Subject Public Key Info:
|
12
12
|
Public Key Algorithm: rsaEncryption
|
13
|
-
|
13
|
+
Public-Key: (2048 bit)
|
14
14
|
Modulus:
|
15
|
-
00:
|
16
|
-
|
17
|
-
|
18
|
-
|
19
|
-
|
20
|
-
|
21
|
-
|
22
|
-
|
23
|
-
|
24
|
-
|
25
|
-
|
26
|
-
|
27
|
-
|
28
|
-
|
29
|
-
|
30
|
-
|
31
|
-
62:
|
32
|
-
|
15
|
+
00:d0:13:11:3b:81:35:76:84:fb:b6:4e:c6:e2:7d:
|
16
|
+
1a:16:a5:88:08:dd:50:fd:08:04:a6:ea:a0:6d:09:
|
17
|
+
8c:f2:bf:68:4b:a0:7b:68:84:b3:e4:51:e1:62:3c:
|
18
|
+
68:06:c8:38:3b:0a:a5:8b:da:87:25:cd:2a:76:0b:
|
19
|
+
82:71:89:5b:11:57:cb:dd:b5:ec:75:56:06:a1:26:
|
20
|
+
57:08:54:2d:83:c9:2f:83:f6:d0:e0:c3:ee:78:14:
|
21
|
+
47:f4:5b:ed:54:6a:93:fe:f0:68:a4:fa:93:8c:72:
|
22
|
+
f0:4b:84:f9:94:a2:ed:d8:83:79:9a:0c:c7:d4:33:
|
23
|
+
8e:e6:76:fd:cc:93:e3:3a:b7:56:97:85:f9:87:7e:
|
24
|
+
a9:60:e2:fd:35:9e:31:6b:2e:cb:86:47:e2:67:08:
|
25
|
+
fe:13:52:aa:64:d4:7c:76:09:b5:99:17:19:ed:6b:
|
26
|
+
76:6c:e8:09:b5:98:06:59:c0:4a:1a:0a:a5:f9:0a:
|
27
|
+
73:7c:56:46:32:17:80:3f:09:fa:a7:00:bb:a6:8b:
|
28
|
+
d0:20:83:fe:ab:3c:a6:bf:ed:e6:e4:71:5e:8a:12:
|
29
|
+
da:65:2a:9a:c9:9a:bd:a7:d4:56:c5:42:b9:bc:0f:
|
30
|
+
0d:19:35:d1:72:37:30:e0:28:0f:36:91:a2:7b:e3:
|
31
|
+
62:37:0e:5c:ba:0d:26:dc:0a:66:b3:18:ed:6e:d1:
|
32
|
+
63:b7
|
33
33
|
Exponent: 65537 (0x10001)
|
34
34
|
X509v3 extensions:
|
35
35
|
X509v3 Subject Alternative Name:
|
36
36
|
DNS:127.0.0.1, DNS:127.0.0.2
|
37
37
|
Signature Algorithm: sha256WithRSAEncryption
|
38
|
-
|
39
|
-
|
40
|
-
|
41
|
-
|
42
|
-
|
43
|
-
|
44
|
-
|
45
|
-
|
46
|
-
|
47
|
-
|
48
|
-
|
49
|
-
|
50
|
-
|
51
|
-
|
52
|
-
|
38
|
+
Signature Value:
|
39
|
+
4f:f7:58:a4:e1:bb:12:ea:e0:6b:e0:f0:ca:18:bd:f6:b8:5e:
|
40
|
+
f2:c4:0d:9d:1d:b1:d6:a1:96:7f:94:96:1a:c2:91:22:f4:2b:
|
41
|
+
e1:96:71:ce:83:0c:84:ff:72:f6:18:72:76:ee:26:9f:0a:92:
|
42
|
+
f4:d9:86:f7:62:90:77:6a:b9:a0:b9:61:53:64:f2:12:e9:23:
|
43
|
+
31:5a:ee:f7:f7:70:bb:f3:b6:89:b3:bc:64:f1:01:2f:c7:c8:
|
44
|
+
0c:70:a9:c6:1f:ca:95:d0:ec:25:43:e4:93:88:8b:c4:4b:50:
|
45
|
+
a0:77:79:f0:2f:81:4d:d3:71:93:2a:58:d1:d7:89:64:c0:30:
|
46
|
+
50:45:ae:36:e4:37:69:d8:d1:50:83:8d:a4:2f:55:ad:a1:c9:
|
47
|
+
ae:68:ac:4d:5f:1b:c9:bc:dc:ff:30:7b:10:da:16:fb:60:f9:
|
48
|
+
ba:73:26:44:7d:de:1e:2b:12:69:40:d4:c2:17:b2:76:d4:40:
|
49
|
+
fa:2c:b0:c5:54:4a:af:1a:94:b9:62:0c:81:42:9a:c3:bc:d6:
|
50
|
+
3a:f7:69:8e:82:91:24:48:46:be:10:bd:ed:c4:71:56:f2:e8:
|
51
|
+
73:64:18:d0:8b:7d:b0:66:2f:a6:e3:4d:23:68:11:b0:48:16:
|
52
|
+
db:8a:dd:bf:e5:de:5e:35:fa:7a:76:0e:ec:9d:e3:ee:d1:28:
|
53
|
+
58:bc:23:bf
|
53
54
|
-----BEGIN CERTIFICATE-----
|
54
|
-
|
55
|
-
|
56
|
-
|
57
|
-
|
58
|
-
|
59
|
-
|
60
|
-
|
61
|
-
+
|
62
|
-
|
63
|
-
|
64
|
-
|
65
|
-
|
66
|
-
|
67
|
-
|
68
|
-
|
55
|
+
MIICxDCCAaygAwIBAgIBBjANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDDAdUZXN0
|
56
|
+
IENBMB4XDTcwMDEwMTAwMDAwMFoXDTMzMDYyNDIxMTgwMFowFDESMBAGA1UEAwwJ
|
57
|
+
MTI3LjAuMC4xMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0BMRO4E1
|
58
|
+
doT7tk7G4n0aFqWICN1Q/QgEpuqgbQmM8r9oS6B7aISz5FHhYjxoBsg4Owqli9qH
|
59
|
+
Jc0qdguCcYlbEVfL3bXsdVYGoSZXCFQtg8kvg/bQ4MPueBRH9FvtVGqT/vBopPqT
|
60
|
+
jHLwS4T5lKLt2IN5mgzH1DOO5nb9zJPjOrdWl4X5h36pYOL9NZ4xay7LhkfiZwj+
|
61
|
+
E1KqZNR8dgm1mRcZ7Wt2bOgJtZgGWcBKGgql+QpzfFZGMheAPwn6pwC7povQIIP+
|
62
|
+
qzymv+3m5HFeihLaZSqayZq9p9RWxUK5vA8NGTXRcjcw4CgPNpGie+NiNw5cug0m
|
63
|
+
3ApmsxjtbtFjtwIDAQABoyMwITAfBgNVHREEGDAWggkxMjcuMC4wLjGCCTEyNy4w
|
64
|
+
LjAuMjANBgkqhkiG9w0BAQsFAAOCAQEAT/dYpOG7Eurga+Dwyhi99rhe8sQNnR2x
|
65
|
+
1qGWf5SWGsKRIvQr4ZZxzoMMhP9y9hhydu4mnwqS9NmG92KQd2q5oLlhU2TyEukj
|
66
|
+
MVru9/dwu/O2ibO8ZPEBL8fIDHCpxh/KldDsJUPkk4iLxEtQoHd58C+BTdNxkypY
|
67
|
+
0deJZMAwUEWuNuQ3adjRUIONpC9VraHJrmisTV8bybzc/zB7ENoW+2D5unMmRH3e
|
68
|
+
HisSaUDUwheydtRA+iywxVRKrxqUuWIMgUKaw7zWOvdpjoKRJEhGvhC97cRxVvLo
|
69
|
+
c2QY0It9sGYvpuNNI2gRsEgW24rdv+XeXjX6enYO7J3j7tEoWLwjvw==
|
69
70
|
-----END CERTIFICATE-----
|
@@ -1,35 +1,35 @@
|
|
1
1
|
Certificate:
|
2
2
|
Data:
|
3
3
|
Version: 3 (0x2)
|
4
|
-
Serial Number:
|
4
|
+
Serial Number: 12 (0xc)
|
5
5
|
Signature Algorithm: sha256WithRSAEncryption
|
6
6
|
Issuer: CN=Test CA
|
7
7
|
Validity
|
8
8
|
Not Before: Jan 1 00:00:00 1970 GMT
|
9
|
-
Not After : Jun
|
9
|
+
Not After : Jun 24 21:18:00 2033 GMT
|
10
10
|
Subject: CN=Test CA
|
11
11
|
Subject Public Key Info:
|
12
12
|
Public Key Algorithm: rsaEncryption
|
13
|
-
|
13
|
+
Public-Key: (2048 bit)
|
14
14
|
Modulus:
|
15
|
-
00:
|
16
|
-
|
17
|
-
|
18
|
-
|
19
|
-
|
20
|
-
|
21
|
-
|
22
|
-
|
23
|
-
|
24
|
-
|
25
|
-
|
26
|
-
|
27
|
-
|
28
|
-
|
29
|
-
|
30
|
-
|
31
|
-
|
32
|
-
|
15
|
+
00:f4:9a:3e:d9:2b:e1:1e:ea:3c:85:7d:27:87:f5:
|
16
|
+
f7:50:c6:60:f0:79:3b:86:23:ce:c9:ba:42:22:1b:
|
17
|
+
61:1a:bc:33:c7:cf:e2:56:8f:6c:84:3e:4e:d0:48:
|
18
|
+
b5:27:7e:7b:49:de:2b:5d:b2:9c:e6:49:53:52:c8:
|
19
|
+
89:92:cb:e1:6c:30:67:c6:74:25:e3:3f:7a:37:ef:
|
20
|
+
54:b4:bd:80:07:a6:db:77:5c:8f:56:ed:1b:14:af:
|
21
|
+
2a:12:f5:44:88:15:a3:63:f2:f9:44:fb:51:ed:9a:
|
22
|
+
6d:9c:cf:48:69:f6:d0:c9:6c:57:ee:1b:be:04:91:
|
23
|
+
b3:ad:16:ed:c8:d0:bf:b4:55:6b:e9:3c:2b:8c:57:
|
24
|
+
19:bc:f1:76:6f:90:8d:e4:60:79:c7:03:e3:9d:83:
|
25
|
+
42:ec:0e:79:78:3c:30:c4:d5:87:63:4d:2c:17:ad:
|
26
|
+
c6:ea:3b:ff:e4:73:1a:12:bb:ed:d3:f6:9d:9d:d9:
|
27
|
+
e7:05:7f:21:6c:27:0a:27:c5:6e:c8:53:6c:a3:bb:
|
28
|
+
0e:11:fa:c4:ab:97:8f:a1:fd:bd:f3:5e:fb:80:1d:
|
29
|
+
15:87:c7:b4:20:94:fc:cb:ac:06:a8:ae:b1:80:a0:
|
30
|
+
5d:50:68:8d:49:63:1b:b2:77:a2:6b:81:21:b6:58:
|
31
|
+
3a:f2:3d:21:ac:a5:91:bc:7d:36:46:f4:87:ea:ce:
|
32
|
+
a3:0f
|
33
33
|
Exponent: 65537 (0x10001)
|
34
34
|
X509v3 extensions:
|
35
35
|
X509v3 Basic Constraints: critical
|
@@ -37,45 +37,45 @@ Certificate:
|
|
37
37
|
X509v3 Key Usage: critical
|
38
38
|
Certificate Sign, CRL Sign
|
39
39
|
X509v3 Subject Key Identifier:
|
40
|
-
|
40
|
+
83:68:26:16:4A:C3:88:0A:A6:48:43:98:E7:2D:4F:5F:70:8C:62:B2
|
41
41
|
Netscape Comment:
|
42
42
|
Puppet Server Internal Certificate
|
43
43
|
X509v3 Authority Key Identifier:
|
44
|
-
|
45
|
-
|
44
|
+
83:68:26:16:4A:C3:88:0A:A6:48:43:98:E7:2D:4F:5F:70:8C:62:B2
|
46
45
|
Signature Algorithm: sha256WithRSAEncryption
|
47
|
-
|
48
|
-
|
49
|
-
|
50
|
-
|
51
|
-
|
52
|
-
|
53
|
-
|
54
|
-
|
55
|
-
|
56
|
-
|
57
|
-
|
58
|
-
|
59
|
-
|
60
|
-
|
61
|
-
|
46
|
+
Signature Value:
|
47
|
+
f2:d5:76:aa:ff:05:b2:63:2d:81:23:3d:d5:dc:8f:a8:eb:bc:
|
48
|
+
17:35:7f:64:1a:37:50:02:ac:54:4b:c9:74:fb:07:f8:ec:f7:
|
49
|
+
c2:6a:80:bd:f7:d1:43:1b:4d:d1:2c:c2:71:d9:28:46:01:0f:
|
50
|
+
14:ab:8e:20:14:93:e7:dc:a7:b1:6d:4a:7d:a9:f7:a2:5d:ea:
|
51
|
+
4d:89:5f:fb:45:4b:98:c8:93:12:d9:74:5e:a4:3e:25:13:2c:
|
52
|
+
92:96:3e:15:c6:d3:46:c7:03:5c:4b:70:65:9e:1f:89:ef:7e:
|
53
|
+
70:63:3c:78:d8:a2:92:53:2d:39:a3:f5:0d:36:aa:2a:7b:a8:
|
54
|
+
a9:63:66:39:e3:49:55:0f:45:d6:14:9e:f4:77:18:16:90:13:
|
55
|
+
41:6a:27:8f:84:c9:c5:0d:ad:cc:d9:bf:62:90:02:56:63:76:
|
56
|
+
76:bc:3f:36:5d:41:ad:07:5e:f9:e2:66:e9:63:e3:ba:79:b9:
|
57
|
+
07:b6:e8:b5:27:0f:18:4e:a4:6d:82:d7:e9:a9:40:ce:eb:d9:
|
58
|
+
6a:b8:d6:04:c4:b2:62:1f:c5:cb:fe:14:f3:c5:cd:0e:11:32:
|
59
|
+
b5:cf:ea:fc:98:3c:59:23:eb:69:c5:0b:f6:83:5b:dc:25:9c:
|
60
|
+
6d:93:29:c2:30:58:c1:10:80:49:86:67:09:fd:22:67:01:e5:
|
61
|
+
32:9a:a3:83
|
62
62
|
-----BEGIN CERTIFICATE-----
|
63
|
-
|
64
|
-
|
65
|
-
|
66
|
-
|
67
|
-
|
68
|
-
|
69
|
-
|
70
|
-
|
71
|
-
|
72
|
-
|
63
|
+
MIIDNDCCAhygAwIBAgIBDDANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDDAdUZXN0
|
64
|
+
IENBMB4XDTcwMDEwMTAwMDAwMFoXDTMzMDYyNDIxMTgwMFowEjEQMA4GA1UEAwwH
|
65
|
+
VGVzdCBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPSaPtkr4R7q
|
66
|
+
PIV9J4f191DGYPB5O4Yjzsm6QiIbYRq8M8fP4laPbIQ+TtBItSd+e0neK12ynOZJ
|
67
|
+
U1LIiZLL4WwwZ8Z0JeM/ejfvVLS9gAem23dcj1btGxSvKhL1RIgVo2Py+UT7Ue2a
|
68
|
+
bZzPSGn20MlsV+4bvgSRs60W7cjQv7RVa+k8K4xXGbzxdm+QjeRgeccD452DQuwO
|
69
|
+
eXg8MMTVh2NNLBetxuo7/+RzGhK77dP2nZ3Z5wV/IWwnCifFbshTbKO7DhH6xKuX
|
70
|
+
j6H9vfNe+4AdFYfHtCCU/MusBqiusYCgXVBojUljG7J3omuBIbZYOvI9Iaylkbx9
|
71
|
+
Nkb0h+rOow8CAwEAAaOBlDCBkTAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB/wQEAwIB
|
72
|
+
BjAdBgNVHQ4EFgQUg2gmFkrDiAqmSEOY5y1PX3CMYrIwMQYJYIZIAYb4QgENBCQW
|
73
73
|
IlB1cHBldCBTZXJ2ZXIgSW50ZXJuYWwgQ2VydGlmaWNhdGUwHwYDVR0jBBgwFoAU
|
74
|
-
|
75
|
-
|
76
|
-
|
77
|
-
|
78
|
-
|
79
|
-
|
80
|
-
|
74
|
+
g2gmFkrDiAqmSEOY5y1PX3CMYrIwDQYJKoZIhvcNAQELBQADggEBAPLVdqr/BbJj
|
75
|
+
LYEjPdXcj6jrvBc1f2QaN1ACrFRLyXT7B/js98JqgL330UMbTdEswnHZKEYBDxSr
|
76
|
+
jiAUk+fcp7FtSn2p96Jd6k2JX/tFS5jIkxLZdF6kPiUTLJKWPhXG00bHA1xLcGWe
|
77
|
+
H4nvfnBjPHjYopJTLTmj9Q02qip7qKljZjnjSVUPRdYUnvR3GBaQE0FqJ4+EycUN
|
78
|
+
rczZv2KQAlZjdna8PzZdQa0HXvniZulj47p5uQe26LUnDxhOpG2C1+mpQM7r2Wq4
|
79
|
+
1gTEsmIfxcv+FPPFzQ4RMrXP6vyYPFkj62nFC/aDW9wlnG2TKcIwWMEQgEmGZwn9
|
80
|
+
ImcB5TKao4M=
|
81
81
|
-----END CERTIFICATE-----
|
@@ -6,30 +6,30 @@ Certificate:
|
|
6
6
|
Issuer: CN=Test CA
|
7
7
|
Validity
|
8
8
|
Not Before: Jan 1 00:00:00 1970 GMT
|
9
|
-
Not After : Jun
|
9
|
+
Not After : Jun 24 21:18:00 2033 GMT
|
10
10
|
Subject: CN=Test CA Subauthority
|
11
11
|
Subject Public Key Info:
|
12
12
|
Public Key Algorithm: rsaEncryption
|
13
|
-
|
13
|
+
Public-Key: (2048 bit)
|
14
14
|
Modulus:
|
15
|
-
00:
|
16
|
-
|
17
|
-
|
18
|
-
|
19
|
-
|
20
|
-
|
21
|
-
|
22
|
-
|
23
|
-
|
24
|
-
|
25
|
-
|
26
|
-
|
27
|
-
|
28
|
-
|
29
|
-
|
30
|
-
|
31
|
-
|
32
|
-
|
15
|
+
00:c0:91:fc:98:ec:30:6b:f0:5c:d6:0b:ed:79:ab:
|
16
|
+
69:80:c1:ca:5b:d5:4a:a3:e3:1b:3e:25:f1:47:0b:
|
17
|
+
7b:9f:dc:1b:0a:8b:d6:0a:c1:e8:8b:ca:38:68:be:
|
18
|
+
91:58:d7:ff:41:a1:00:48:59:a0:62:2e:1d:e7:2d:
|
19
|
+
7a:c5:64:4d:be:48:30:eb:4f:e3:9e:3f:06:a4:ef:
|
20
|
+
e4:95:5c:86:ff:54:24:49:75:16:84:41:78:c5:8d:
|
21
|
+
ac:ff:af:95:91:ae:e1:f3:92:f0:a1:dd:18:e9:7c:
|
22
|
+
8e:d0:86:e9:84:84:f3:cb:4c:9c:12:f6:a7:54:f0:
|
23
|
+
9c:87:3b:f1:50:67:cf:12:04:11:c0:1b:e0:46:e4:
|
24
|
+
03:73:9c:3c:ea:ed:3e:31:2f:bc:cf:bd:38:fb:1d:
|
25
|
+
fa:f5:8d:66:e7:f2:0b:5f:df:0f:99:ec:45:c9:aa:
|
26
|
+
e4:10:ad:5b:64:a5:da:af:27:e1:47:ac:4f:aa:aa:
|
27
|
+
74:a5:0e:9c:14:c4:89:ef:ce:fb:50:38:b9:f9:09:
|
28
|
+
d6:f9:ba:5b:49:1c:8c:70:9c:0d:4e:3c:94:6d:9e:
|
29
|
+
63:24:c3:e8:49:74:7a:79:02:0d:b4:6f:f3:b9:e0:
|
30
|
+
c0:4c:74:24:21:56:b5:57:e6:c9:29:08:1b:63:6d:
|
31
|
+
2d:9c:e2:68:33:c1:cf:60:07:54:88:d4:da:6c:15:
|
32
|
+
48:1b
|
33
33
|
Exponent: 65537 (0x10001)
|
34
34
|
X509v3 extensions:
|
35
35
|
X509v3 Basic Constraints: critical
|
@@ -37,45 +37,45 @@ Certificate:
|
|
37
37
|
X509v3 Key Usage: critical
|
38
38
|
Certificate Sign, CRL Sign
|
39
39
|
X509v3 Subject Key Identifier:
|
40
|
-
|
40
|
+
38:7E:66:C4:7A:8B:16:EC:8A:0C:76:FC:C4:A6:7F:79:E5:DD:9A:FB
|
41
41
|
Netscape Comment:
|
42
42
|
Puppet Server Internal Certificate
|
43
43
|
X509v3 Authority Key Identifier:
|
44
|
-
|
45
|
-
|
44
|
+
83:68:26:16:4A:C3:88:0A:A6:48:43:98:E7:2D:4F:5F:70:8C:62:B2
|
46
45
|
Signature Algorithm: sha256WithRSAEncryption
|
47
|
-
|
48
|
-
|
49
|
-
|
50
|
-
|
51
|
-
|
52
|
-
|
53
|
-
|
54
|
-
|
55
|
-
|
56
|
-
|
57
|
-
|
58
|
-
|
59
|
-
|
60
|
-
|
61
|
-
|
46
|
+
Signature Value:
|
47
|
+
8c:4b:be:0e:b0:af:d0:14:7f:04:4d:99:65:3e:ec:43:6e:62:
|
48
|
+
5c:89:4e:60:74:c3:72:ae:2d:f1:9c:e6:5f:c6:2c:d3:d7:9b:
|
49
|
+
af:f2:8d:51:d3:7c:bc:34:4d:35:49:f5:78:6d:41:8c:c3:0d:
|
50
|
+
bf:4a:6f:dc:f0:d7:92:9d:2b:71:16:c8:20:40:b8:21:f8:2a:
|
51
|
+
6b:a0:f5:54:40:13:25:b9:fe:bf:29:0a:d3:b5:71:13:9d:92:
|
52
|
+
f9:db:c1:e6:fa:04:24:b6:1c:61:46:2d:6c:8e:18:c5:f2:30:
|
53
|
+
00:6e:f5:d3:4b:c0:2e:68:3e:6e:b6:5c:ee:e4:98:04:71:df:
|
54
|
+
b5:58:0b:3b:04:72:e2:1e:ea:cf:94:a2:d4:1e:60:a4:87:00:
|
55
|
+
5a:80:28:85:85:5e:98:d6:bc:7a:be:ce:68:cd:3f:d4:2d:b2:
|
56
|
+
e3:84:61:d5:4d:d1:86:74:3a:e1:47:ec:7d:0f:3f:88:e2:1b:
|
57
|
+
86:5a:01:03:6a:cb:1d:10:5b:0d:c7:c5:66:e4:e4:7e:02:ae:
|
58
|
+
d3:a9:3f:0a:66:70:48:65:f0:fa:53:bb:65:1c:dd:03:6c:ff:
|
59
|
+
3a:6d:47:7d:b1:a0:68:df:ff:59:05:84:e3:fb:de:59:a4:00:
|
60
|
+
7b:6b:8a:de:a2:d5:69:62:57:af:11:5e:12:40:6a:58:a1:8a:
|
61
|
+
f5:55:34:30
|
62
62
|
-----BEGIN CERTIFICATE-----
|
63
63
|
MIIDQTCCAimgAwIBAgIBAzANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDDAdUZXN0
|
64
|
-
|
64
|
+
IENBMB4XDTcwMDEwMTAwMDAwMFoXDTMzMDYyNDIxMTgwMFowHzEdMBsGA1UEAwwU
|
65
65
|
VGVzdCBDQSBTdWJhdXRob3JpdHkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
|
66
|
-
|
67
|
-
|
68
|
-
|
69
|
-
|
70
|
-
|
71
|
-
|
72
|
-
|
66
|
+
AoIBAQDAkfyY7DBr8FzWC+15q2mAwcpb1Uqj4xs+JfFHC3uf3BsKi9YKweiLyjho
|
67
|
+
vpFY1/9BoQBIWaBiLh3nLXrFZE2+SDDrT+OePwak7+SVXIb/VCRJdRaEQXjFjaz/
|
68
|
+
r5WRruHzkvCh3RjpfI7QhumEhPPLTJwS9qdU8JyHO/FQZ88SBBHAG+BG5ANznDzq
|
69
|
+
7T4xL7zPvTj7Hfr1jWbn8gtf3w+Z7EXJquQQrVtkpdqvJ+FHrE+qqnSlDpwUxInv
|
70
|
+
zvtQOLn5Cdb5ultJHIxwnA1OPJRtnmMkw+hJdHp5Ag20b/O54MBMdCQhVrVX5skp
|
71
|
+
CBtjbS2c4mgzwc9gB1SI1NpsFUgbAgMBAAGjgZQwgZEwDAYDVR0TAQH/BAIwADAO
|
72
|
+
BgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFDh+ZsR6ixbsigx2/MSmf3nl3Zr7MDEG
|
73
73
|
CWCGSAGG+EIBDQQkFiJQdXBwZXQgU2VydmVyIEludGVybmFsIENlcnRpZmljYXRl
|
74
|
-
|
75
|
-
|
76
|
-
|
77
|
-
|
78
|
-
|
79
|
-
|
80
|
-
|
74
|
+
MB8GA1UdIwQYMBaAFINoJhZKw4gKpkhDmOctT19wjGKyMA0GCSqGSIb3DQEBCwUA
|
75
|
+
A4IBAQCMS74OsK/QFH8ETZllPuxDbmJciU5gdMNyri3xnOZfxizT15uv8o1R03y8
|
76
|
+
NE01SfV4bUGMww2/Sm/c8NeSnStxFsggQLgh+CproPVUQBMluf6/KQrTtXETnZL5
|
77
|
+
28Hm+gQkthxhRi1sjhjF8jAAbvXTS8AuaD5utlzu5JgEcd+1WAs7BHLiHurPlKLU
|
78
|
+
HmCkhwBagCiFhV6Y1rx6vs5ozT/ULbLjhGHVTdGGdDrhR+x9Dz+I4huGWgEDassd
|
79
|
+
EFsNx8Vm5OR+Aq7TqT8KZnBIZfD6U7tlHN0DbP86bUd9saBo3/9ZBYTj+95ZpAB7
|
80
|
+
a4reotVpYlevEV4SQGpYoYr1VTQw
|
81
81
|
-----END CERTIFICATE-----
|
data/spec/fixtures/ssl/ca.pem
CHANGED
@@ -6,30 +6,30 @@ Certificate:
|
|
6
6
|
Issuer: CN=Test CA
|
7
7
|
Validity
|
8
8
|
Not Before: Jan 1 00:00:00 1970 GMT
|
9
|
-
Not After : Jun
|
9
|
+
Not After : Jun 24 21:18:00 2033 GMT
|
10
10
|
Subject: CN=Test CA
|
11
11
|
Subject Public Key Info:
|
12
12
|
Public Key Algorithm: rsaEncryption
|
13
|
-
|
13
|
+
Public-Key: (2048 bit)
|
14
14
|
Modulus:
|
15
|
-
00:
|
16
|
-
|
17
|
-
|
18
|
-
|
19
|
-
|
20
|
-
|
21
|
-
|
22
|
-
|
23
|
-
|
24
|
-
|
25
|
-
|
26
|
-
|
27
|
-
|
28
|
-
|
29
|
-
|
30
|
-
|
31
|
-
|
32
|
-
|
15
|
+
00:f4:9a:3e:d9:2b:e1:1e:ea:3c:85:7d:27:87:f5:
|
16
|
+
f7:50:c6:60:f0:79:3b:86:23:ce:c9:ba:42:22:1b:
|
17
|
+
61:1a:bc:33:c7:cf:e2:56:8f:6c:84:3e:4e:d0:48:
|
18
|
+
b5:27:7e:7b:49:de:2b:5d:b2:9c:e6:49:53:52:c8:
|
19
|
+
89:92:cb:e1:6c:30:67:c6:74:25:e3:3f:7a:37:ef:
|
20
|
+
54:b4:bd:80:07:a6:db:77:5c:8f:56:ed:1b:14:af:
|
21
|
+
2a:12:f5:44:88:15:a3:63:f2:f9:44:fb:51:ed:9a:
|
22
|
+
6d:9c:cf:48:69:f6:d0:c9:6c:57:ee:1b:be:04:91:
|
23
|
+
b3:ad:16:ed:c8:d0:bf:b4:55:6b:e9:3c:2b:8c:57:
|
24
|
+
19:bc:f1:76:6f:90:8d:e4:60:79:c7:03:e3:9d:83:
|
25
|
+
42:ec:0e:79:78:3c:30:c4:d5:87:63:4d:2c:17:ad:
|
26
|
+
c6:ea:3b:ff:e4:73:1a:12:bb:ed:d3:f6:9d:9d:d9:
|
27
|
+
e7:05:7f:21:6c:27:0a:27:c5:6e:c8:53:6c:a3:bb:
|
28
|
+
0e:11:fa:c4:ab:97:8f:a1:fd:bd:f3:5e:fb:80:1d:
|
29
|
+
15:87:c7:b4:20:94:fc:cb:ac:06:a8:ae:b1:80:a0:
|
30
|
+
5d:50:68:8d:49:63:1b:b2:77:a2:6b:81:21:b6:58:
|
31
|
+
3a:f2:3d:21:ac:a5:91:bc:7d:36:46:f4:87:ea:ce:
|
32
|
+
a3:0f
|
33
33
|
Exponent: 65537 (0x10001)
|
34
34
|
X509v3 extensions:
|
35
35
|
X509v3 Basic Constraints: critical
|
@@ -37,45 +37,45 @@ Certificate:
|
|
37
37
|
X509v3 Key Usage: critical
|
38
38
|
Certificate Sign, CRL Sign
|
39
39
|
X509v3 Subject Key Identifier:
|
40
|
-
|
40
|
+
83:68:26:16:4A:C3:88:0A:A6:48:43:98:E7:2D:4F:5F:70:8C:62:B2
|
41
41
|
Netscape Comment:
|
42
42
|
Puppet Server Internal Certificate
|
43
43
|
X509v3 Authority Key Identifier:
|
44
|
-
|
45
|
-
|
44
|
+
83:68:26:16:4A:C3:88:0A:A6:48:43:98:E7:2D:4F:5F:70:8C:62:B2
|
46
45
|
Signature Algorithm: sha256WithRSAEncryption
|
47
|
-
|
48
|
-
|
49
|
-
|
50
|
-
|
51
|
-
|
52
|
-
|
53
|
-
|
54
|
-
|
55
|
-
|
56
|
-
|
57
|
-
|
58
|
-
|
59
|
-
|
60
|
-
|
61
|
-
|
46
|
+
Signature Value:
|
47
|
+
53:4c:5e:b5:86:73:e9:d0:ab:f1:87:8e:3c:3e:8c:5c:ce:c9:
|
48
|
+
aa:86:a5:ea:96:96:77:e5:31:98:04:e5:46:f8:75:7b:00:b7:
|
49
|
+
2a:b4:f6:a4:6c:e8:e8:7e:95:b0:c2:bb:a3:ae:87:49:9f:a2:
|
50
|
+
ea:49:5a:d8:ac:79:b4:f7:aa:0c:6c:57:fb:27:8c:c0:31:97:
|
51
|
+
b0:8f:b0:4e:53:96:99:3a:0e:4c:47:51:d1:93:88:48:a4:c4:
|
52
|
+
e7:7b:c2:d7:34:4c:22:88:1b:85:f2:3f:ff:88:39:c1:61:da:
|
53
|
+
52:ba:42:69:1a:9a:5b:1f:b5:f6:88:76:4e:21:f9:48:0a:4d:
|
54
|
+
6e:4c:f2:b4:8c:4d:3b:c1:95:6d:f1:09:26:68:63:83:f5:d2:
|
55
|
+
3e:d2:6d:c0:09:8e:93:36:c3:58:5e:c7:8b:79:1a:72:b6:af:
|
56
|
+
eb:2e:3b:1d:2b:19:55:49:09:df:55:49:2b:d4:93:bf:95:df:
|
57
|
+
ab:6d:aa:bc:57:e2:67:33:ec:6a:7a:33:e9:31:c8:01:01:53:
|
58
|
+
03:f5:43:fb:8f:18:7c:0b:69:0d:81:d9:af:4b:f2:b9:b0:cd:
|
59
|
+
5f:3d:24:a0:ad:ca:c5:b5:60:3c:fb:52:8f:48:1c:2d:ec:45:
|
60
|
+
01:03:79:40:4e:f9:1c:e4:e5:67:27:21:2c:f7:48:95:ff:22:
|
61
|
+
da:2b:2e:48
|
62
62
|
-----BEGIN CERTIFICATE-----
|
63
63
|
MIIDNzCCAh+gAwIBAgIBAjANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDDAdUZXN0
|
64
|
-
|
65
|
-
|
66
|
-
|
67
|
-
|
68
|
-
|
69
|
-
|
70
|
-
|
71
|
-
|
72
|
-
|
64
|
+
IENBMB4XDTcwMDEwMTAwMDAwMFoXDTMzMDYyNDIxMTgwMFowEjEQMA4GA1UEAwwH
|
65
|
+
VGVzdCBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPSaPtkr4R7q
|
66
|
+
PIV9J4f191DGYPB5O4Yjzsm6QiIbYRq8M8fP4laPbIQ+TtBItSd+e0neK12ynOZJ
|
67
|
+
U1LIiZLL4WwwZ8Z0JeM/ejfvVLS9gAem23dcj1btGxSvKhL1RIgVo2Py+UT7Ue2a
|
68
|
+
bZzPSGn20MlsV+4bvgSRs60W7cjQv7RVa+k8K4xXGbzxdm+QjeRgeccD452DQuwO
|
69
|
+
eXg8MMTVh2NNLBetxuo7/+RzGhK77dP2nZ3Z5wV/IWwnCifFbshTbKO7DhH6xKuX
|
70
|
+
j6H9vfNe+4AdFYfHtCCU/MusBqiusYCgXVBojUljG7J3omuBIbZYOvI9Iaylkbx9
|
71
|
+
Nkb0h+rOow8CAwEAAaOBlzCBlDAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQE
|
72
|
+
AwIBBjAdBgNVHQ4EFgQUg2gmFkrDiAqmSEOY5y1PX3CMYrIwMQYJYIZIAYb4QgEN
|
73
73
|
BCQWIlB1cHBldCBTZXJ2ZXIgSW50ZXJuYWwgQ2VydGlmaWNhdGUwHwYDVR0jBBgw
|
74
|
-
|
75
|
-
|
76
|
-
|
77
|
-
|
78
|
-
|
79
|
-
|
80
|
-
|
74
|
+
FoAUg2gmFkrDiAqmSEOY5y1PX3CMYrIwDQYJKoZIhvcNAQELBQADggEBAFNMXrWG
|
75
|
+
c+nQq/GHjjw+jFzOyaqGpeqWlnflMZgE5Ub4dXsAtyq09qRs6Oh+lbDCu6Ouh0mf
|
76
|
+
oupJWtisebT3qgxsV/snjMAxl7CPsE5Tlpk6DkxHUdGTiEikxOd7wtc0TCKIG4Xy
|
77
|
+
P/+IOcFh2lK6QmkamlsftfaIdk4h+UgKTW5M8rSMTTvBlW3xCSZoY4P10j7SbcAJ
|
78
|
+
jpM2w1hex4t5GnK2r+suOx0rGVVJCd9VSSvUk7+V36ttqrxX4mcz7Gp6M+kxyAEB
|
79
|
+
UwP1Q/uPGHwLaQ2B2a9L8rmwzV89JKCtysW1YDz7Uo9IHC3sRQEDeUBO+Rzk5Wcn
|
80
|
+
ISz3SJX/ItorLkg=
|
81
81
|
-----END CERTIFICATE-----
|