73cdee503f
This patch fixes an issue where if the user attempts to use a certificate that does not have a subject or CN, we would fail to create a listener using the certificate. Per the x.509 specification, a blank subject is allowed as long as the subjectAltName extension is present in the certificate. Octavia will now check for the a valid subAltName if the subject CN can not be retrieved. If both are missing an appropriate error is raised for the user. Closes-Bug: #2043582 Change-Id: I06911f42b9bf29cf9a5f2e76d8333d8a2f1bc60b |
||
|---|---|---|
| .. | ||
| __init__.py | ||
| constants.py | ||
| data_model_helpers.py | ||
| sample_certs.py | ||
| sample_data_models.py | ||
| sample_haproxy_prometheus | ||
| sample_network_data.py | ||
| sample_octavia_prometheus | ||
| utils.py | ||