73cdee503f
This patch fixes an issue where if the user attempts to use a certificate that does not have a subject or CN, we would fail to create a listener using the certificate. Per the x.509 specification, a blank subject is allowed as long as the subjectAltName extension is present in the certificate. Octavia will now check for the a valid subAltName if the subject CN can not be retrieved. If both are missing an appropriate error is raised for the user. Closes-Bug: #2043582 Change-Id: I06911f42b9bf29cf9a5f2e76d8333d8a2f1bc60b
5 lines
96 B
YAML
5 lines
96 B
YAML
---
|
|
fixes:
|
|
- |
|
|
Fixed an issue when using certificates with a blank subject or missing CN.
|