Changeset c825c3a in mod_gnutls

Timestamp:

Jul 3, 2019, 1:52:50 AM (4 years ago)

Author:

Fiona Klute <fiona.klute@…>

Branches:

asyncio, main, master, proxy-ticket

Children:

59afe51

Parents:

e5546be

Message:

Test suite: Move directory for server identity into authority directory

Location:

test

Files:

• Makefile.am (modified) (6 diffs)
• authority/server/crl.template (moved) (moved from test/server/crl.template)
• authority/server/template.in (moved) (moved from test/server/template.in)
• authority/server/uid.in (moved) (moved from test/server/uid.in)
• runtests (modified) (1 diff)
• test-24_pkcs11_cert.bash (modified) (1 diff)
• tests/00_basic/apache.conf (modified) (1 diff)
• tests/01_serverwide_priorities/apache.conf (modified) (1 diff)
• tests/02_cache_in_vhost/apache.conf (modified) (1 diff)
• tests/03_cachetimeout_in_vhost/apache.conf (modified) (1 diff)
• tests/04_basic_nosni/apache.conf (modified) (1 diff)
• tests/05_mismatched-priorities/apache.conf (modified) (1 diff)
• tests/06_verify_sni_a/apache.conf (modified) (1 diff)
• tests/07_verify_sni_b/apache.conf (modified) (1 diff)
• tests/08_verify_no_sni_fallback_to_first_vhost/apache.conf (modified) (1 diff)
• tests/09_verify_no_sni_fails_with_wrong_order/apache.conf (modified) (1 diff)
• tests/10_basic_client_verification/apache.conf (modified) (1 diff)
• tests/11_basic_client_verification_fail/apache.conf (modified) (1 diff)
• tests/12_cgi_variables/apache.conf (modified) (1 diff)
• tests/13_cgi_variables_no_client_cert/apache.conf (modified) (1 diff)
• tests/14_resume_session/apache.conf (modified) (1 diff)
• tests/15_basic_msva/apache.conf (modified) (1 diff)
• tests/16_view-status/apache.conf (modified) (1 diff)
• tests/17_cgi_vars_large_cert/apache.conf (modified) (1 diff)
• tests/18_client_verification_wrong_cert/apache.conf (modified) (1 diff)
• tests/19_TLS_reverse_proxy/apache.conf (modified) (1 diff)
• tests/19_TLS_reverse_proxy/backend.conf (modified) (1 diff)
• tests/20_TLS_reverse_proxy_client_auth/apache.conf (modified) (1 diff)
• tests/20_TLS_reverse_proxy_client_auth/backend.conf (modified) (1 diff)
• tests/21_TLS_reverse_proxy_wrong_cert/apache.conf (modified) (1 diff)
• tests/22_TLS_reverse_proxy_crl_revoke/apache.conf (modified) (1 diff)
• tests/22_TLS_reverse_proxy_crl_revoke/backend.conf (modified) (1 diff)
• tests/23_TLS_reverse_proxy_mismatched_priorities/apache.conf (modified) (1 diff)
• tests/23_TLS_reverse_proxy_mismatched_priorities/backend.conf (modified) (1 diff)
• tests/25_Disable_TLS_1.0/apache.conf (modified) (1 diff)
• tests/26_redirect_HTTP_to_HTTPS/apache.conf (modified) (1 diff)
• tests/27_OCSP_server/apache.conf (modified) (1 diff)
• tests/28_HTTP2_support/apache.conf (modified) (2 diffs)
• tests/29_force_handshake_vhost/apache.conf (modified) (2 diffs)
• tests/30_ip_based_vhosts/apache.conf (modified) (2 diffs)
• tests/31_vhost_SNI_serveralias_match/apache.conf (modified) (2 diffs)
• tests/32_vhost_SNI_serveralias_mismatch/apache.conf (modified) (1 diff)
• tests/33_vhost_SNI_serveralias_missinghost/apache.conf (modified) (1 diff)
• tests/34_TLS_reverse_proxy_h2/apache.conf (modified) (1 diff)
• tests/34_TLS_reverse_proxy_h2/backend.conf (modified) (1 diff)

test/Makefile.am

@@ -58 +58 @@
 shared_identities = authority authority/client
 pgp_identities = $(shared_identities)
-x509_only_identities = server rogueca imposter rogueclient
+x509_only_identities = authority/server rogueca imposter rogueclient
 if ENABLE_OCSP_TEST
 x509_only_identities += ocsp-responder
@@ -93 +93 @@
 # running at any time, so test cases actually have to wait for each
 # other - just not in any particular order.
-check_DATA = $(tokens) server/crl.pem
-
-MOSTLYCLEANFILES = cache/* logs/* outputs/* server/crl.pem
+check_DATA = $(tokens) authority/server/crl.pem
+
+MOSTLYCLEANFILES = cache/* logs/* outputs/* authority/server/crl.pem
 
 cert_templates = authority/template.in authority/client/template.in \
         imposter/template.in ocsp-responder/template rogueca/template \
-        rogueclient/template.in server/template.in
+        rogueclient/template.in authority/server/template.in
 generated_templates = authority/template authority/client/template \
-        imposter/template rogueclient/template server/template
+        imposter/template rogueclient/template authority/server/template
 
 # Delete X.509 private keys on full clean. Note that unless you need
@@ -161 +161 @@
 MOSTLYCLEANFILES += authority/ocsp_index.txt authority/ocsp_index.txt.attr
 authority/ocsp_index.txt: $(x509_tokens) gen_ocsp_index authority/ocsp_index.txt.attr
-        ./gen_ocsp_index server/x509.pem authority/client/x509.pem > $@
+        ./gen_ocsp_index authority/server/x509.pem authority/client/x509.pem > $@
 
 authority/ocsp_index.txt.attr: authority/secret.key
@@ -167 +167 @@
 
 # build certificate chain file for server
-check_DATA += server/x509-chain.pem
-MOSTLYCLEANFILES += server/x509-chain.pem
+check_DATA += authority/server/x509-chain.pem
+MOSTLYCLEANFILES += authority/server/x509-chain.pem
 %/x509-chain.pem: %/x509.pem authority/x509.pem
         cat $< authority/x509.pem > $@
@@ -175 +175 @@
 # SoftHSM tokens. Note that the SoftHSM 2 token is a directory and
 # hence has to be treated slightly differently.
-SOFTHSM_TOKEN = server/softhsm.db
-SOFTHSM2_TOKEN = server/softhsm2.db
+SOFTHSM_TOKEN = authority/server/softhsm.db
+SOFTHSM2_TOKEN = authority/server/softhsm2.db
 
 # Tokens should be cleaned whether or not the matching SoftHSM version
@@ -233 +233 @@
 
 EXTRA_DIST = $(apache_data) $(cert_templates) $(shared_identities:=/uid.in) \
-        apache_service.bash common.bash runtests server/crl.template \
+        apache_service.bash common.bash runtests authority/server/crl.template \
         softhsm.bash
 

test/runtests

@@ -213 +213 @@
     fi
     echo "---- Testing OCSP server ----"
-    wait_ready "ocsptool --ask --nonce --load-issuer authority/x509.pem --load-cert server/x509.pem ${store_ocsp}"
+    wait_ready "ocsptool --ask --nonce --load-issuer authority/x509.pem --load-cert authority/server/x509.pem ${store_ocsp}"
     echo "---- OCSP test done ----"
 fi

test/test-24_pkcs11_cert.bash

@@ -22 +22 @@
     cat - >"${tmp_softhsm_conf}" <<EOF
 objectstore.backend = file
-directories.tokendir = $(realpath $(pwd))/server/softhsm2.db
+directories.tokendir = $(realpath $(pwd))/authority/server/softhsm2.db
 EOF
     export SOFTHSM2_CONF="${tmp_softhsm_conf}"

test/tests/00_basic/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
 </VirtualHost>

test/tests/01_serverwide_priorities/apache.conf

@@ -8 +8 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
 </VirtualHost>

test/tests/02_cache_in_vhost/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/03_cachetimeout_in_vhost/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/04_basic_nosni/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/05_mismatched-priorities/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL:-VERS-SSL3.0
 </VirtualHost>

test/tests/06_verify_sni_a/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/07_verify_sni_b/apache.conf

@@ -16 +16 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/08_verify_no_sni_fallback_to_first_vhost/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/09_verify_no_sni_fails_with_wrong_order/apache.conf

@@ -16 +16 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/10_basic_client_verification/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
  GnuTLSClientCAFile authority/x509.pem

test/tests/11_basic_client_verification_fail/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
  GnuTLSClientCAFile authority/x509.pem

test/tests/12_cgi_variables/apache.conf

@@ -11 +11 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSDHFile ${srcdir}/ffdhe3072.pem
  GnuTLSPriorities NORMAL

test/tests/13_cgi_variables_no_client_cert/apache.conf

@@ -11 +11 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
  GnuTLSClientCAFile authority/x509.pem

test/tests/14_resume_session/apache.conf

@@ -7 +7 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/15_basic_msva/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSClientVerify require
  GnuTLSClientVerifyMethod msva

test/tests/16_view-status/apache.conf

@@ -12 +12 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/17_cgi_vars_large_cert/apache.conf

@@ -11 +11 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSDHFile ${srcdir}/ffdhe3072.pem
  GnuTLSPriorities NORMAL

test/tests/18_client_verification_wrong_cert/apache.conf

@@ -6 +6 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
  GnuTLSClientCAFile authority/x509.pem

test/tests/19_TLS_reverse_proxy/apache.conf

@@ -7 +7 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
 
  GnuTLSProxyEngine      On

test/tests/19_TLS_reverse_proxy/backend.conf

@@ -6 +6 @@
  ServerName ${BACKEND_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
 </VirtualHost>

test/tests/20_TLS_reverse_proxy_client_auth/apache.conf

@@ -7 +7 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 

test/tests/20_TLS_reverse_proxy_client_auth/backend.conf

@@ -6 +6 @@
  ServerName ${BACKEND_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
  GnuTLSClientCAFile authority/x509.pem

test/tests/21_TLS_reverse_proxy_wrong_cert/apache.conf

@@ -7 +7 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 

test/tests/22_TLS_reverse_proxy_crl_revoke/apache.conf

@@ -7 +7 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 
  GnuTLSProxyEngine      On
  GnuTLSProxyCAFile      authority/x509.pem
- GnuTLSProxyCRLFile     server/crl.pem
+ GnuTLSProxyCRLFile     authority/server/crl.pem
  GnuTLSProxyPriorities  NORMAL
  ProxyPass /proxy/ https://${BACKEND_HOST}:${BACKEND_PORT}/

test/tests/22_TLS_reverse_proxy_crl_revoke/backend.conf

@@ -6 +6 @@
  ServerName ${BACKEND_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 </VirtualHost>

test/tests/23_TLS_reverse_proxy_mismatched_priorities/apache.conf

@@ -7 +7 @@
  ServerName ${TEST_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities NORMAL
 

test/tests/23_TLS_reverse_proxy_mismatched_priorities/backend.conf

@@ -6 +6 @@
  ServerName ${BACKEND_HOST}
  GnuTLSEnable On
- GnuTLSCertificateFile server/x509.pem
- GnuTLSKeyFile server/secret.key
+ GnuTLSCertificateFile  authority/server/x509.pem
+ GnuTLSKeyFile          authority/server/secret.key
  GnuTLSPriorities       NORMAL:-AES-256-GCM
 </VirtualHost>

test/tests/25_Disable_TLS_1.0/apache.conf

@@ -6 +6 @@
         ServerName      ${TEST_HOST}
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
         GnuTLSPriorities        NORMAL:-VERS-TLS1.0
 </VirtualHost>

test/tests/26_redirect_HTTP_to_HTTPS/apache.conf

@@ -29 +29 @@
         RewriteOptions          Inherit
         GnuTLSEnable            On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
         GnuTLSPriorities        NORMAL
 </VirtualHost>

test/tests/27_OCSP_server/apache.conf

@@ -12 +12 @@
         #GnuTLSOCSPStapling     On
         GnuTLSOCSPCacheTimeout  60
-        GnuTLSCertificateFile   server/x509-chain.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509-chain.pem
+        GnuTLSKeyFile           authority/server/secret.key
         GnuTLSPriorities        NORMAL
 </VirtualHost>

test/tests/28_HTTP2_support/apache.conf

@@ -15 +15 @@
         ServerName              vhost.example.com
         GnuTLSEnable            On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
         GnuTLSPriorities        NORMAL
 </VirtualHost>
@@ -25 +25 @@
         ServerName              ${TEST_HOST}
         GnuTLSEnable            On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
         GnuTLSPriorities        NORMAL
 </VirtualHost>

test/tests/29_force_handshake_vhost/apache.conf

@@ -7 +7 @@
         ServerName      vhost.example.com
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
 
         <Directory ${srcdir}/data>
@@ -18 +18 @@
         ServerName      ${TEST_HOST}
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
 </VirtualHost>

test/tests/30_ip_based_vhosts/apache.conf

@@ -8 +8 @@
         ServerName      ${TEST_HOST}
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
 </VirtualHost>
 
@@ -15 +15 @@
         ServerName      ${TEST_HOST}
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
 
         # Use mod_rewrite to set up a path that will work only on this

test/tests/31_vhost_SNI_serveralias_match/apache.conf

@@ -6 +6 @@
         ServerName      vhost.example.com
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
 </VirtualHost>
 
@@ -14 +14 @@
         ServerAlias     *.virtual.host
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
 </VirtualHost>

test/tests/32_vhost_SNI_serveralias_mismatch/apache.conf

@@ -7 +7 @@
         ServerAlias     *.virtual.host
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
 </VirtualHost>

test/tests/33_vhost_SNI_serveralias_missinghost/apache.conf

@@ -7 +7 @@
         ServerAlias     *.virtual.host
         GnuTLSEnable    On
-        GnuTLSCertificateFile   server/x509.pem
-        GnuTLSKeyFile           server/secret.key
+        GnuTLSCertificateFile   authority/server/x509.pem
+        GnuTLSKeyFile           authority/server/secret.key
 </VirtualHost>

test/tests/34_TLS_reverse_proxy_h2/apache.conf

@@ -9 +9 @@
   ServerName            ${TEST_HOST}
   GnuTLSEnable          On
-  GnuTLSCertificateFile server/x509.pem
-  GnuTLSKeyFile         server/secret.key
+  GnuTLSCertificateFile authority/server/x509.pem
+  GnuTLSKeyFile         authority/server/secret.key
 
   GnuTLSProxyEngine     On

test/tests/34_TLS_reverse_proxy_h2/backend.conf

@@ -9 +9 @@
   Protocols             h2 http/1.1
   GnuTLSEnable          On
-  GnuTLSCertificateFile server/x509.pem
-  GnuTLSKeyFile         server/secret.key
+  GnuTLSCertificateFile authority/server/x509.pem
+  GnuTLSKeyFile         authority/server/secret.key
 </VirtualHost>