CA Should Fix up CSRs to add FQDN to SAN dNSName field
Bug #1401580 reported by
Doug Chivers
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Anchor |
Fix Released
|
High
|
Stanislaw Pitucha |
Bug Description
The use of FQDNs in the CN field of certificates is deprecated (http://
Changed in anchor: | |
assignee: | nobody → Robert Clark (robert-clark) |
importance: | Undecided → High |
Changed in anchor: | |
assignee: | Robert Clark (robert-clark) → Stanislaw Pitucha (stanislaw-pitucha) |
Changed in anchor: | |
status: | New → In Progress |
Changed in anchor: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/202134 /git.openstack. org/cgit/ openstack/ anchor/ commit/ ?id=5456abff94b 46ddc76094a7862 2b2f762803aa0a
Committed: https:/
Submitter: Jenkins
Branch: master
commit 5456abff94b46dd c76094a78622b2f 762803aa0a
Author: Stanisław Pitucha <email address hidden>
Date: Wed Jul 15 20:35:14 2015 +1000
Add fixups configuration / processing
Fixups allow changing the submitted CSR before signing. This may be
useful for enforcing rules, like removing deprecated options.
All fixups are available in the "anchor.fixups" namespace and each one
returns either a new or a modified CSR when it's finished.
Partial-bug: #1401580 6799660899eb34f 728782bc893
Change-Id: Id42802194bbdf3