commonName - Code Search

staging/src/k8s.io/apiserver/pkg/server/dynamiccertificates/util.go

// kube-apiserver usage of certs.
func GetHumanCertDetail(certificate *x509.Certificate) string {
	humanName := certificate.Subject.CommonName
	signerHumanName := certificate.Issuer.CommonName
	if certificate.Subject.CommonName == certificate.Issuer.CommonName {
		signerHumanName = "<self>"
	}

	usages := []string{}
	for _, curr := range certificate.ExtKeyUsage {
		if curr == x509.ExtKeyUsageClientAuth {

Registered: Sat Jun 15 01:39:40 UTC 2024

- Last Modified: Thu Jul 21 07:29:30 UTC 2022

- 2.1K bytes

- Viewed (0)

github.com/kubernetes/kubernetes

cmd/kubeadm/app/util/certs/util.go

// the expected SubjectCommonName
func AssertCertificateHasCommonName(t *testing.T, cert *x509.Certificate, commonName string) {
	if cert.Subject.CommonName != commonName {
		t.Errorf("cert has Subject.CommonName %s, expected %s", cert.Subject.CommonName, commonName)
	}
}

// AssertCertificateHasOrganizations is a utility function for kubeadm testing that asserts if a given certificate has

Registered: Sat Jun 15 01:39:40 UTC 2024

- Last Modified: Wed May 01 16:01:49 UTC 2024

- 9.1K bytes

- Viewed (0)

github.com/istio/istio

security/pkg/pki/util/verify_cert.go

				[]string{org}, cert.Issuer.Organization)
		}

		if cn := expectedFields.CommonName; cn != cert.Subject.CommonName {
			return fmt.Errorf("unexpected value for 'CommonName' field: want %v but got %v",
				cn, cert.Subject.CommonName)
		}
	}
	return nil
}

func sortExtKeyUsage(extKeyUsage []x509.ExtKeyUsage) []int {
	data := make([]int, len(extKeyUsage))

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Mon Sep 05 10:37:29 UTC 2022

- 5.9K bytes

- Viewed (0)

github.com/golang/go

src/crypto/x509/pkix/pkix.go

	ret = n.appendRDNs(ret, n.PostalCode, oidPostalCode)
	ret = n.appendRDNs(ret, n.Organization, oidOrganization)
	ret = n.appendRDNs(ret, n.OrganizationalUnit, oidOrganizationalUnit)
	if len(n.CommonName) > 0 {
		ret = n.appendRDNs(ret, []string{n.CommonName}, oidCommonName)
	}
	if len(n.SerialNumber) > 0 {
		ret = n.appendRDNs(ret, []string{n.SerialNumber}, oidSerialNumber)
	}
	for _, atv := range n.ExtraNames {

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Fri Oct 13 17:09:47 UTC 2023

- 9.1K bytes

- Viewed (0)

github.com/kubernetes/kubernetes

pkg/apis/certificates/helpers.go

	if !kubeletServingRequiredUsages.Equal(usages) && !kubeletServingRequiredUsagesNoRSA.Equal(usages) {
		return fmt.Errorf("usages did not match %v", kubeletServingRequiredUsages.List())
	}

	if !strings.HasPrefix(req.Subject.CommonName, "system:node:") {
		return commonNameNotSystemNode
	}

	return nil
}

var (
	kubeletClientRequiredUsagesNoRSA = sets.NewString(
		string(UsageDigitalSignature),
		string(UsageClientAuth),
	)

Registered: Sat Jun 15 01:39:40 UTC 2024

- Last Modified: Tue Dec 27 08:04:25 UTC 2022

- 4K bytes

- Viewed (0)

github.com/kubernetes/kubernetes

cmd/kubeadm/app/phases/certs/renewal/filerenewer_test.go

	// creates a File renewer using a test Certificate authority
	fr := NewFileRenewer(testCACert, testCAKey)

	// renews a certificate
	certCfg := &pkiutil.CertConfig{
		Config: certutil.Config{
			CommonName: "test-certs",
			AltNames: certutil.AltNames{
				DNSNames: []string{"test-domain.space"},
			},
			Usages: []x509.ExtKeyUsage{x509.ExtKeyUsageClientAuth},
		},
	}

	cert, _, err := fr.Renew(certCfg)

Registered: Sat Jun 15 01:39:40 UTC 2024

- Last Modified: Wed Sep 28 04:36:54 UTC 2022

- 1.5K bytes

- Viewed (0)

github.com/golang/go

src/crypto/x509/root_unix_test.go

			for i, cn := range tc.cns {
				if i >= r.len() {
					t.Errorf("missing cert %v @ %v", cn, i)
				} else if r.mustCert(t, i).Subject.CommonName != cn {
					fmt.Printf("%#v\n", r.mustCert(t, 0).Subject)
					t.Errorf("unexpected cert common name %q, want %q", r.mustCert(t, i).Subject.CommonName, cn)
				}
			}
			if r.len() > len(tc.cns) {
				t.Errorf("got %v certs, which is more than %v wanted", r.len(), len(tc.cns))
			}

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Wed Mar 01 00:36:38 UTC 2023

- 6.1K bytes

- Viewed (0)

github.com/square/okhttp

mockwebserver/src/test/java/mockwebserver3/MockResponseSniTest.kt

   * Host header).
   */
  @Test
  fun domainFronting() {
    val heldCertificate =
      HeldCertificate.Builder()
        .commonName("server name")
        .addSubjectAlternativeName("url-host.com")
        .build()
    val handshakeCertificates =
      HandshakeCertificates.Builder()
        .heldCertificate(heldCertificate)

Registered: Sun Jun 16 04:42:17 UTC 2024

- Last Modified: Mon Jan 08 01:13:22 UTC 2024

- 5.9K bytes

- Viewed (0)

github.com/square/okhttp

okhttp-tls/src/main/kotlin/okhttp3/tls/internal/TlsUtil.kt

  private val localhost: HandshakeCertificates by lazy {
    // Generate a self-signed cert for the server to serve and the client to trust.
    val heldCertificate =
      HeldCertificate.Builder()
        .commonName("localhost")
        .addSubjectAlternativeName("localhost")
        .addSubjectAlternativeName("localhost.localdomain")
        .build()
    return@lazy HandshakeCertificates.Builder()

Registered: Sun Jun 16 04:42:17 UTC 2024

- Last Modified: Mon Jan 08 01:13:22 UTC 2024

- 4.1K bytes

- Viewed (0)

github.com/square/okhttp

okhttp-tls/README.md

    .certificateAuthority(0)
    .build();

// Create a server certificate and a server that uses it.
HeldCertificate serverCertificate = new HeldCertificate.Builder()
    .commonName("ingen")
    .addSubjectAlternativeName(server.getHostName())
    .signedBy(rootCertificate)
    .build();
HandshakeCertificates serverCertificates = new HandshakeCertificates.Builder()

Registered: Sun Jun 16 04:42:17 UTC 2024

- Last Modified: Sun Dec 17 15:34:10 UTC 2023

- 9.1K bytes

- Viewed (0)

Search Options