when generating a CSR in the control panel, don't set empty attributes

Same as in a52c56e571. Fixes #1338.
2018-01-28 08:41:31 -05:00 · 2018-01-28 08:41:31 -05:00 · ef6f121491
parent ec3aab0eaa
commit ef6f121491
2 changed files with 8 additions and 1 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -1,6 +1,13 @@
 CHANGELOG
 =========

+In Development
+--------------
+
+Control Panel:
+
+* Installing your own TLS/SSL certificate had been broken since v0.24 because the new version of openssl became stricter about CSR generation parameters.
+
 v0.26b (January 25, 2018)
 -------------------------

--- a/management/ssl_certificates.py
+++ b/management/ssl_certificates.py
@ -556,7 +556,7 @@ def create_csr(domain, ssl_key, country_code, env):
                "openssl", "req", "-new",
                "-key", ssl_key,
                "-sha256",
-                "-subj", "/C=%s/ST=/L=/O=/CN=%s" % (country_code, domain)])
+                "-subj", "/C=%s/CN=%s" % (country_code, domain)])

 def install_cert(domain, ssl_cert, ssl_chain, env, raw=False):
 	# Write the combined cert+chain to a temporary path and validate that it is OK.