ansible-collections/community.general
1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2025-05-24 01:49:08 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

openssl_csr: improve invalid SAN error messages (#53201)

Browse source 
* Improve invalid SAN error messages.

* Add changelog.
This commit is contained in:
Felix Fontein 2019-03-05 17:07:07 +01:00 committed by John R Barker
parent af6e4cc75b
commit 628326b879
4 changed files with 25 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

9
lib/ansible/modules/crypto/openssl_csr.py
View file

@ -489,7 +489,14 @@ class CertificateSigningRequestPyOpenSSL(CertificateSigningRequestBase):
extensions = []
if self.subjectAltName:
altnames = ', '.join(self.subjectAltName)
extensions.append(crypto.X509Extension(b"subjectAltName", self.subjectAltName_critical, altnames.encode('ascii')))
try:
extensions.append(crypto.X509Extension(b"subjectAltName", self.subjectAltName_critical, altnames.encode('ascii')))
except OpenSSL.crypto.Error as e:
raise CertificateSigningRequestError(
'Error while parsing Subject Alternative Names {0} (check for missing type prefix, such as "DNS:"!): {1}'.format(
', '.join(["{0}".format(san) for san in self.subjectAltName]), str(e)
)
)
if self.keyUsage:
usages = ', '.join(self.keyUsage)