|
 |
0fcb1e |
From 36cba23f3f671886f5e7fa310c25a6e500c76e0b Mon Sep 17 00:00:00 2001
|
|
|
0fcb1e |
From: Florence Blanc-Renaud <flo@redhat.com>
|
|
|
0fcb1e |
Date: Mon, 16 Jan 2023 09:31:57 +0100
|
|
|
0fcb1e |
Subject: [PATCH] Tests: force key type in ACME tests
|
|
|
0fcb1e |
|
|
|
0fcb1e |
PKI can issue ACME certs only when the key type is rsa.
|
|
|
0fcb1e |
|
|
|
0fcb1e |
With version 2.0.0, certbot defaults to ecdsa key type,
|
|
|
0fcb1e |
and this causes test failures.
|
|
|
0fcb1e |
For now, force rsa when requesting an ACME certificate.
|
|
|
0fcb1e |
This change can be reverted when PKI fixes the issue
|
|
|
0fcb1e |
on their side (https://github.com/dogtagpki/pki/issues/4273)
|
|
|
0fcb1e |
|
|
|
0fcb1e |
Related: https://pagure.io/freeipa/issue/9298
|
|
|
0fcb1e |
Signed-off-by: Florence Blanc-Renaud <flo@redhat.com>
|
|
|
0fcb1e |
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
|
|
|
0fcb1e |
---
|
|
|
0fcb1e |
ipatests/test_integration/test_acme.py | 2 ++
|
|
|
0fcb1e |
1 file changed, 2 insertions(+)
|
|
|
0fcb1e |
|
|
|
0fcb1e |
diff --git a/ipatests/test_integration/test_acme.py b/ipatests/test_integration/test_acme.py
|
|
|
0fcb1e |
index a30f2fc756783c0a5c28ecf32c1e40f422c47a19..15d7543cfb0fa0fcb921166f7cd8f13d0535a41d 100644
|
|
|
0fcb1e |
--- a/ipatests/test_integration/test_acme.py
|
|
|
0fcb1e |
+++ b/ipatests/test_integration/test_acme.py
|
|
|
0fcb1e |
@@ -131,6 +131,7 @@ def certbot_standalone_cert(host, acme_server):
|
|
|
0fcb1e |
'certonly',
|
|
|
0fcb1e |
'--domain', host.hostname,
|
|
|
0fcb1e |
'--standalone',
|
|
|
0fcb1e |
+ '--key-type', 'rsa',
|
|
|
0fcb1e |
]
|
|
|
0fcb1e |
)
|
|
|
0fcb1e |
|
|
|
0fcb1e |
@@ -305,6 +306,7 @@ class TestACME(CALessBase):
|
|
|
0fcb1e |
'--manual-public-ip-logging-ok',
|
|
|
0fcb1e |
'--manual-auth-hook', CERTBOT_DNS_IPA_SCRIPT,
|
|
|
0fcb1e |
'--manual-cleanup-hook', CERTBOT_DNS_IPA_SCRIPT,
|
|
|
0fcb1e |
+ '--key-type', 'rsa',
|
|
|
0fcb1e |
])
|
|
|
0fcb1e |
|
|
|
0fcb1e |
##############
|
|
|
0fcb1e |
--
|
|
|
0fcb1e |
2.39.1
|
|
|
0fcb1e |
|