acf-openssl, /etc/ssl/openssl-ca-acf.cnf setting new_certs_dir not updating?
I am trying to run acf/acf-openssl in a docker container. I’d like to place all user generated data into a docker volume. I attempted to do this by changing the $dir variable in openssl-ca-acf.cnf (in this case I changed it to /volume). This had the desired effect for most settings, except the new_certs_dir is still being written to /etc/ssl/cert. It appears as if the new_certs_dir setting is not being “picked up” in acf-openssl.
I’m using Docker for Mac. Starting with the Docker Alpine:3.8 container, the steps to reproduce the behavior from ash are:
<code class="shell"> apk update && apk upgrade apk add alpine-conf acf-core act-alpine-baselayout acf-openssl. setup-acf </code>
Finally, I edit the /etc/ssl/openssl-ca-acf.cnf file, changing dir:
<code class="shell"> # mkdir /volume if not mounted apk add vim vim /etc/ssl/openssl-ca-acf.cnf => dir = /volume </code>
I then bring up ACF in Chrome at https://localhost. I generate a CA and a certificate with the CA.
Observed behavior: The data for the generated certificate (password, key, .pfx file etc) are still placed in /etc/ssl/cert. Expected behavior: certificates created in /volume instead.
Is there something I am missing?
I am new to Alpine, so please let me know if there is any other information I can provide.
(from redmine: issue id 9505, created on 2018-10-03)