acf-openssl, /etc/ssl/openssl-ca-acf.cnf setting new_certs_dir not updating?
Hi,
I am trying to run acf/acf-openssl in a docker container. I’d like to place all user generated data into a docker volume. I attempted to do this by changing the $dir variable in openssl-ca-acf.cnf (in this case I changed it to /volume). This had the desired effect for most settings, except the new_certs_dir is still being written to /etc/ssl/cert. It appears as if the new_certs_dir setting is not being “picked up” in acf-openssl.
I’m using Docker for Mac. Starting with the Docker Alpine:3.8 container, the steps to reproduce the behavior from ash are:
<code class="shell">
apk update && apk upgrade
apk add alpine-conf acf-core act-alpine-baselayout acf-openssl.
setup-acf
</code>
Finally, I edit the /etc/ssl/openssl-ca-acf.cnf file, changing dir:
<code class="shell">
# mkdir /volume if not mounted
apk add vim
vim /etc/ssl/openssl-ca-acf.cnf
=> dir = /volume
</code>
I then bring up ACF in Chrome at https://localhost. I generate a CA and a certificate with the CA.
Observed behavior:
The data for the generated certificate (password, key, .pfx file etc) are still placed in /etc/ssl/cert.
Expected behavior:
certificates created in /volume instead.
Is there something I am missing?
I am new to Alpine, so please let me know if there is any other information I can provide.
Thanks!
(from redmine: issue id 9505, created on 2018-10-03)