upstream/certbot
1
0
Fork 0
mirror of https://github.com/certbot/certbot.git synced 2026-05-28 04:34:11 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

there must be at least one subject name to sign

Browse source
This commit is contained in:
Seth Schoen 2012-07-01 23:14:55 -07:00
parent a927dae732
commit 83a1ee779b
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
client-webserver/chocolate.py
View file

@ -176,6 +176,9 @@ class session(object):
self.die(r, r.UnsafeKey)
return
names = CSR.subject_names(csr)
if len(names) == 0:
self.die(r, r.BadCSR)
return
for san in names: # includes CN as well as SANs
if not safe("hostname", san) or not CSR.can_sign(san):
# TODO: Is there a problem including client-supplied data in the URL?