nixpkgs/nixos/tests/common/acme/server
stuebinm 6afb255d97 nixos: remove all uses of lib.mdDoc
these changes were generated with nixq 0.0.2, by running

  nixq ">> lib.mdDoc[remove] Argument[keep]" --batchmode nixos/**.nix
  nixq ">> mdDoc[remove] Argument[keep]" --batchmode nixos/**.nix
  nixq ">> Inherit >> mdDoc[remove]" --batchmode nixos/**.nix

two mentions of the mdDoc function remain in nixos/, both of which
are inside of comments.

Since lib.mdDoc is already defined as just id, this commit is a no-op as
far as Nix (and the built manual) is concerned.
2024-04-13 10:07:35 -07:00
..
acme.test.cert.pem nixos/tests/acme/server: generate certs with longer validity 2022-11-21 18:18:17 +01:00
acme.test.key.pem nixos/tests/acme/server: generate certs with longer validity 2022-11-21 18:18:17 +01:00
ca.cert.pem nixos/tests/acme/server: generate certs with longer validity 2022-11-21 18:18:17 +01:00
ca.key.pem nixos/tests/acme/server: generate certs with longer validity 2022-11-21 18:18:17 +01:00
default.nix nixos: remove all uses of lib.mdDoc 2024-04-13 10:07:35 -07:00
generate-certs.nix nixos/tests/acme/generate-certs: deprecate phases 2023-01-12 22:56:46 +01:00
README.md
snakeoil-certs.nix

Fake Certificate Authority for ACME testing

This will set up a test node running pebble to serve ACME certificate requests.

"Snake oil" certs

The snake oil certs are hard coded into the repo for reasons explained here. The root of the issue is that Nix will hash the derivation based on the arguments to mkDerivation, not the output. Minica will always generate a random certificate even if the arguments are unchanged. As a result, it's possible to end up in a situation where the cached and local generated certs mismatch and cause issues with testing.

To generate new certificates, run the following commands:

nix-build generate-certs.nix
cp result/* .
rm result