The user is being able to install SSL certificate as SSL CA
certificate using the system-certificate-install. This should
not be permitted by the system.
So this validation blocks the installation of SSL certificate
if it is passing the mode ssl_ca and using a certificate
that is not CA.
Test Plan:
PASS: Verify SSL certificate is not being installed as SSL CA
certificate
Reviewed: https:/ /review. opendev. org/c/starlingx /config/ +/821235 /opendev. org/starlingx/ config/ commit/ c605b620c39e5ca ca97f8729f216a8 6ab727f56b
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit c605b620c39e5ca ca97f8729f216a8 6ab727f56b
Author: Alexandre Horst <email address hidden>
Date: Thu Dec 9 12:43:18 2021 -0300
Add validation for a non CA certificate
The user is being able to install SSL certificate as SSL CA certificate- install. This should
certificate using the system-
not be permitted by the system.
So this validation blocks the installation of SSL certificate
if it is passing the mode ssl_ca and using a certificate
that is not CA.
Test Plan:
PASS: Verify SSL certificate is not being installed as SSL CA
certificate
Closes-bug: 1954302 dd75c521e9d7508 960096561e2
Signed-off-by: Alexandre Horst <email address hidden>
Change-Id: I036bd1898cf608