test certs: add ::1 IP subject

cpu · djc · commit 47d38a3cc694 · 2025-02-19T22:44:40.000+01:00
Update the `certgen` example to add `::1` to the testdata end entity
server certificate's SANs. Previously only the IPv4 localhost address
was present. We want to be able to bind both IPv4 and IPv6 for testing
and so need a certificate appropriate for both.
diff --git a/examples/certgen.rs b/examples/certgen.rs
@@ -20,8 +20,11 @@ fn main() -> anyhow::Result<()> {
     let ee_key = KeyPair::generate()?;
     fs::write("tests/testdata/server.key", ee_key.serialize_pem())?;
 
-    let mut ee_params =
-        rcgen::CertificateParams::new(["localhost".to_owned(), "127.0.0.1".to_owned()])?;
+    let mut ee_params = rcgen::CertificateParams::new([
+        "localhost".to_owned(),
+        "127.0.0.1".to_owned(),
+        "::1".to_owned(),
+    ])?;
     ee_params.distinguished_name = DistinguishedName::new();
     let ee_cert = ee_params.signed_by(&ee_key, &ca_cert, &ca_key)?;
     fs::write("tests/testdata/server.pem", ee_cert.pem())?;
diff --git a/tests/testdata/ca.pem b/tests/testdata/ca.pem
@@ -1,10 +1,10 @@
 -----BEGIN CERTIFICATE-----
-MIIBXjCCAQSgAwIBAgIUbXBMeSxe2lXakHVdMhU9ps0QWQMwCgYIKoZIzj0EAwIw
+MIIBXjCCAQSgAwIBAgIUX09o2RZyejadbjKD1F3yyi4pV7kwCgYIKoZIzj0EAwIw
 FDESMBAGA1UEAwwJUGViYmxlIENBMCAXDTc1MDEwMTAwMDAwMFoYDzQwOTYwMTAx
 MDAwMDAwWjAUMRIwEAYDVQQDDAlQZWJibGUgQ0EwWTATBgcqhkjOPQIBBggqhkjO
-PQMBBwNCAASUu53a7+MpZSf4t/ANQhAhi624IsdDS/ZFcsATPp6WenhCyr125vmo
-OvhUfktVBOJgPR0bL9MWSFizMiik7titozIwMDAdBgNVHQ4EFgQUxn3ULQ/Kd0by
-dPwikOu98TzXi7AwDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAgNIADBFAiEA
-8T9txswJ2qCS/A4Nyw1j7f09V03hHwLAbj29oDtesBQCICbR56EC78hIU1JIs9iC
-LhgrtxakdQSXwzBrBiS/3uo9
+PQMBBwNCAAQY6DrcNzb0g2AK/7/maMPz02zwE6beJkngD5JuisCfvhHL+o9E5sg7
+dKV1REtjQy5+m9tBbpMMkpgqNYXKzq5+ozIwMDAdBgNVHQ4EFgQUAqZBNvXu2Yx3
+z0KJiXm1KkQNeNowDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAgNIADBFAiA+
+TcbGkDbq2xk1TlrOxoO+r/cj0ciZWbBSy5CCCpga9QIhAKybfK/5p85tvKOZISHL
+BO6P7mmwKNZCC/vaZJnGr+Qn
 -----END CERTIFICATE-----
diff --git a/tests/testdata/server.key b/tests/testdata/server.key
@@ -1,5 +1,5 @@
 -----BEGIN PRIVATE KEY-----
-MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgkHXACwv4mPfOSpSi
-WtfL1JWsRsG9eHX0DLXwK789DCihRANCAASZ5qhTWNhLDKhM82hHiBSAhxDXYYiN
-Kg2R7gc8nRELT6y707uYbg8BMFZ0gYFJ8yRq6t6Sydh9CFzF+M0HRl5h
+MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgrEFq6K79e3O+6P8i
+4pCIMWBP/ic8RDOXJjUfBHVDrNuhRANCAARkB2UCtO4lxEHwXI8ZS0gfun2Cjn1q
+g0a/bcRHixQg7hjOERiSOb44LeP7TH/WzPerqJVcyhyvbumDCXtatlbk
 -----END PRIVATE KEY-----
diff --git a/tests/testdata/server.pem b/tests/testdata/server.pem
@@ -1,9 +1,9 @@
 -----BEGIN CERTIFICATE-----
-MIIBNTCB3KADAgECAhQkyLb77I5H3A5py/xswV6q9F2LFjAKBggqhkjOPQQDAjAU
+MIIBRzCB7qADAgECAhR8bLVVPDFWMFDzOMsjRwUhRHGSODAKBggqhkjOPQQDAjAU
 MRIwEAYDVQQDDAlQZWJibGUgQ0EwIBcNNzUwMTAxMDAwMDAwWhgPNDA5NjAxMDEw
-MDAwMDBaMAAwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAASZ5qhTWNhLDKhM82hH
-iBSAhxDXYYiNKg2R7gc8nRELT6y707uYbg8BMFZ0gYFJ8yRq6t6Sydh9CFzF+M0H
-Rl5hox4wHDAaBgNVHREEEzARgglsb2NhbGhvc3SHBH8AAAEwCgYIKoZIzj0EAwID
-SAAwRQIgduq7/TvQBFsu1iKC+Y66Mm+FSoyeP5mbuEUrs02ZzeACIQDb3zGuvBSA
-novEEhgFMhfnhc14765jVy4Rc+IEHv4Q4Q==
+MDAwMDBaMAAwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAARkB2UCtO4lxEHwXI8Z
+S0gfun2Cjn1qg0a/bcRHixQg7hjOERiSOb44LeP7TH/WzPerqJVcyhyvbumDCXta
+tlbkozAwLjAsBgNVHREEJTAjgglsb2NhbGhvc3SHBH8AAAGHEAAAAAAAAAAAAAAA
+AAAAAAEwCgYIKoZIzj0EAwIDSAAwRQIhANJS0E6Zw13VCiY/84JD+QFeHC/HAOOg
+oZP6tzWTTvu0AiBvSrI6sFzA49mUTviy6+j4L8y/IfxIhGgAHSS8wTCEXw==
 -----END CERTIFICATE-----
