mirror of https://github.com/status-im/consul.git
a2876453a5
As part of this change, we ensure that the SAN extensions are marked as critical when the subject is empty so that AWS PCA tolerates the loss of common names well and continues to function as a Connect CA provider. Parts of this currently hack around a bug in crypto/x509 and can be removed after https://go-review.googlesource.com/c/go/+/329129 lands in a Go release. Note: the AWS PCA tests do not run automatically, but the following passed locally for me: ENABLE_AWS_PCA_TESTS=1 go test ./agent/connect/ca -run TestAWS |
||
---|---|---|
.. | ||
auto_config.go | ||
auto_config_oss.go | ||
auto_config_oss_test.go | ||
auto_config_test.go | ||
auto_encrypt.go | ||
auto_encrypt_test.go | ||
config.go | ||
config_oss.go | ||
config_translate.go | ||
config_translate_test.go | ||
mock_oss_test.go | ||
mock_test.go | ||
persist.go | ||
run.go | ||
server_addr.go | ||
tls.go | ||
tls_test.go |