Mirroristas/etcd
2
0
Fork 0
mirror of https://github.com/etcd-io/etcd.git synced 2024-09-27 06:25:44 +00:00
Code Issues Packages Projects Releases Wiki Activity

transport: warn on user-provided CA

Browse Source 
ServerName is ignored for a user-provided CA for backwards compatibility. This
breaks PKI, so warn it is deprecated.
This commit is contained in:
Anthony Romano 2017-01-12 09:10:05 -08:00
parent 43dd751c47
commit da8fd18d8e
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pkg/transport/listener.go
View File

@ -23,6 +23,7 @@ import (
"crypto/x509/pkix" "crypto/x509/pkix"
"encoding/pem" "encoding/pem"
"fmt" "fmt"
"log"
"math/big" "math/big"
"net" "net"
"os" "os"
@ -235,6 +236,7 @@ func (info TLSInfo) ClientConfig() (*tls.Config, error) {
return nil, err return nil, err
} }
// if given a CA, trust any host with a cert signed by the CA // if given a CA, trust any host with a cert signed by the CA
log.Println("warning: ignoring ServerName for user-provided CA for backwards compatibility is deprecated")
cfg.ServerName = "" cfg.ServerName = ""
} }