[Spacewalk-list] Osad not working with wildcard certificates
Milan Zazrivec
mzazrivec at redhat.com
Mon Mar 14 09:57:53 UTC 2011
On Saturday 12 March 2011 22:33:11 Trent Johnson wrote:
> I am getting an with osad when using a wildcard certificate with
> spacewalk/osad.
>
>
> Starting osa-dispatcher:
> /usr/lib/python2.6/site-packages/jabber/jabber.py:68:
> DeprecationWarning: the sha module is deprecated; use the hashlib module
> instead
> import sha, time
> RHN 10088 2011/03/12 15:01:59 -05:00: ('Traceback caught:',)
> RHN 10088 2011/03/12 15:01:59 -05:00: ('Traceback (most recent call
> last):\n File "/usr/share/rhn/osad/jabber_lib.py", line 611, in
> connect\n self.verify_peer(ssl)\n File
> "/usr/share/rhn/osad/jabber_lib.py", line 692, in verify_peer\n
> (self._host, common_name))\nSSLVerifyError: Mismatch: peer name:
> spacesl6.oreillyschool.com; common name: *.oreillyschool.com.\n',)
>
> Can the check in /usr/share/rhn/osad/jabber_lib.py be changed at bit to
> match wildcard certificates?
In truth I'm not really sure whether other parts of Spacewalk are able to
correctly deal with wildcard common name in SSL certificate, although
I think it would be a nice to have.
Please open up a bug report for this to make sure this won't be forgotten.
-MZ
More information about the Spacewalk-list
mailing list