Update Scanner/ScannerDB certs (#1031)

Author: RTann

chart/templates/mock-scanner-db-tls.yaml

@@ -1,8 +1,8 @@
 apiVersion: v1
 data:
-  ca.pem: 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
-  cert.pem: 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
-  key.pem: LS0tLS1CRUdJTiBFQyBQUklWQVRFIEtFWS0tLS0tCk1IY0NBUUVFSUo5ajFjZGMxbWpWb3NZUXVrSE5Ra29aYk01bjBjSHVLU0xpN2x1Zk8yWFJvQW9HQ0NxR1NNNDkKQXdFSG9VUURRZ0FFWElhc2FDTjR2RjlFbzdEdDBqM3VTV3dCazU3VTR5N3A1dGVMNERXYmJYK2h1UHM4cURlRApjSzNQZXgxOUxOYStTcG5SN2xyMVI1L1lodHF6OTc0TFp3PT0KLS0tLS1FTkQgRUMgUFJJVkFURSBLRVktLS0tLQo=
+  ca.pem: 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
+  cert.pem: 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
+  key.pem: LS0tLS1CRUdJTiBFQyBQUklWQVRFIEtFWS0tLS0tCk1IY0NBUUVFSU1qNlh0UWZVVnlKUDZoS2lJZlNLekxiRDF2OXhvOHdJeGJoQVNWajF2UEpvQW9HQ0NxR1NNNDkKQXdFSG9VUURRZ0FFUXJmY2dRWUpIakUvK2Y3TWZkd2JIaHVDMkQ1ZUUzYkZiMzd1UmdZZmRPUTZNTHpaZEsxWAp5dkh3angxcm00OTdVaTVCYkVKM2h0a2VYZHZGMTZPQXZRPT0KLS0tLS1FTkQgRUMgUFJJVkFURSBLRVktLS0tLQo=
 kind: Secret
 metadata:
   annotations:

chart/templates/mock-scanner-tls.yaml

@@ -1,8 +1,8 @@
 apiVersion: v1
 data:
-  ca.pem: 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
-  cert.pem: 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
-  key.pem: LS0tLS1CRUdJTiBFQyBQUklWQVRFIEtFWS0tLS0tCk1IY0NBUUVFSUhrSHQxcXRpdXpncHlCY0dFSnJGT210aS9vOWUvVTBuNlVZYjRhbFVNQzhvQW9HQ0NxR1NNNDkKQXdFSG9VUURRZ0FFYzd3NXJ3RytUL2xBZkFNZjFvdjV4bFpuYm5Odktua2VoSE9ybTNjQ3EvaysvcGRnaUlCRgoybktHVjlVWjVLQkZXNncyZHp1dTFVK2htM0ZEeTRBMFB3PT0KLS0tLS1FTkQgRUMgUFJJVkFURSBLRVktLS0tLQo=
+  ca.pem: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUNFRENDQWJhZ0F3SUJBZ0lVWmZmSU9USUZWcDdjSjZPSnlhZ2JLNFdPTkVrd0NnWUlLb1pJemowRUF3SXcKWmpFTE1Ba0dBMVVFQmhNQ1ZWTXhGekFWQmdOVkJBZ1REazV2Y25Sb0lFTmhjbTlzYVc1aE1SQXdEZ1lEVlFRSApFd2RTWVd4bGFXZG9NUll3RkFZRFZRUUtFdzFTWldRZ1NHRjBMQ0JKYm1NdU1SUXdFZ1lEVlFRTEV3dEZibWRwCmJtVmxjbWx1WnpBZUZ3MHlNakV5TVRRd01ESXhNREJhRncweU56RXlNVE13TURJeE1EQmFNR1l4Q3pBSkJnTlYKQkFZVEFsVlRNUmN3RlFZRFZRUUlFdzVPYjNKMGFDQkRZWEp2YkdsdVlURVFNQTRHQTFVRUJ4TUhVbUZzWldsbgphREVXTUJRR0ExVUVDaE1OVW1Wa0lFaGhkQ3dnU1c1akxqRVVNQklHQTFVRUN4TUxSVzVuYVc1bFpYSnBibWN3CldUQVRCZ2NxaGtqT1BRSUJCZ2dxaGtqT1BRTUJCd05DQUFSM2pRd1NkM0lOMDIvTDltN2hWL3ZwN3dKWXp1TjQKZGNWZ0NIKzZHWFNmeldLR3dIMlFiRHFCcGhIbmhidjlDMXVnd2oyOWhwZG81K1g5My9pMlFKZEZvMEl3UURBTwpCZ05WSFE4QkFmOEVCQU1DQVFZd0R3WURWUjBUQVFIL0JBVXdBd0VCL3pBZEJnTlZIUTRFRmdRVWVrZlVjZEJlClBoRlRrQ1dDSnQ0M2Z6QURsbUl3Q2dZSUtvWkl6ajBFQXdJRFNBQXdSUUloQU0yRjQ0STMxQTZiRytHcHIzdG8KSzV0WXhMYmo4MlZ1UG1Vdkk3bFBObUJrQWlBR2swdlhpOHlBdFhjNUJIZzdnTG5td1R4bll6U25qckNCT1crNQo0d2xFV3c9PQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCg==
+  cert.pem: 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
+  key.pem: LS0tLS1CRUdJTiBFQyBQUklWQVRFIEtFWS0tLS0tCk1IY0NBUUVFSU5DTUFKZHhYVzhjY3o3Zm9vZk5uMHJhL0JGVDBkTlJ1bVByblFYazdqR2dvQW9HQ0NxR1NNNDkKQXdFSG9VUURRZ0FFczZZWHBmdk92NXRKMkRCYnMwK2dScWZtMjZrb2p5b0FyVmpYNW5FYU9IdmdsNHZibDdzcQpXaXNTNkN6TEpxMHlaZ3ZFczRqMDdpN3pyaS9HOXJRK1VnPT0KLS0tLS1FTkQgRUMgUFJJVkFURSBLRVktLS0tLQo=
 kind: Secret
 metadata:
   annotations:

scripts/cert/README.md

@@ -0,0 +1,16 @@
+# cert
+
+Scanner and ScannerDB requires valid certificates to run.
+`gen-cert.sh` generates certificates for these deployments
+and overwrites the current values in a given Kubernetes secret configuration file.
+
+This script requires [`cfssl`](https://github.com/cloudflare/cfssl), which
+may be installed via:
+```sh
+go install github.com/cloudflare/cfssl/cmd/...@latest
+```
+
+To run from the top-level directory and overwrite `chart/templates/mock-scanner[-db]-tls.yaml`:
+```sh
+./scripts/cert/gen-cert.sh chart/templates/mock-scanner-tls.yaml chart/templates/mock-scanner-db-tls.yaml
+```

scripts/cert/gen-cert.sh

@@ -4,15 +4,17 @@
 
 set -e
 
+ROOT="$(cd "$(dirname "${BASH_SOURCE[0]}")"/../.. && pwd)"
+
 SCANNER_TLS_FILE=$1
 SCANNER_DB_TLS_FILE=$2
 
 echo "Generating CA for Scanner and Scanner DB"
-cfssl genkey -initca csr.json | cfssljson -bare ca
+cfssl genkey -initca "$ROOT/scripts/cert/csr.json" | cfssljson -bare ca
 SCANNER_CA=$(base64 -in ca.pem)
 
 echo "Generating Cert/Key pair for Scanner"
-cfssl gencert -ca ca.pem -ca-key ca-key.pem -hostname scanner.stackrox csr.json | cfssljson -bare
+cfssl gencert -ca ca.pem -ca-key ca-key.pem -hostname scanner.stackrox "$ROOT/scripts/cert/csr.json" | cfssljson -bare
 SCANNER_CERT=$(base64 -in cert.pem)
 SCANNER_KEY=$(base64 -in cert-key.pem)
 yq eval ".data[\"ca.pem\"] = \"${SCANNER_CA}\"" "${SCANNER_TLS_FILE}" > tmp.yaml
@@ -23,7 +25,7 @@ mv tmp3.yaml "${SCANNER_TLS_FILE}"
 rm *.yaml
 
 echo "Generating Cert/Key pair for Scanner DB"
-cfssl gencert -ca ca.pem -ca-key ca-key.pem -hostname scanner-db.stackrox csr.json | cfssljson -bare
+cfssl gencert -ca ca.pem -ca-key ca-key.pem -hostname scanner-db.stackrox "$ROOT/scripts/cert/csr.json" | cfssljson -bare
 SCANNER_DB_CERT=$(base64 -in cert.pem)
 SCANNER_DB_KEY=$(base64 -in cert-key.pem)
 yq eval ".data[\"ca.pem\"] = \"${SCANNER_CA}\"" "${SCANNER_DB_TLS_FILE}" > tmp.yaml