Use both ssl pin commits#4040
Conversation
|
Skipping CI for Draft Pull Request. |
Change-Id: Ib0b1f31c59984dcac63f72199ccbe3180df3dd9f Signed-off-by: rabi <ramishra@redhat.com>
OpenSSL >= 3.5.6 introduced strict DER validation that rejects some real-world CA root certificates with non-standard encoding (openssl/openssl#25023). This causes Ansible 2.15's url lookup plugin to fail with "ASN1: NOT_ENOUGH_DATA" when load_verify_locations is called with DER-encoded cadata. Pin openssl to 3.5.5 until the issue is resolved upstream. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> Signed-off-by: Luca Miccini <lmiccini@redhat.com>
|
recheck |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: Valkyrie00 The full list of commands accepted by this bot can be found here. The pull request process is described here DetailsNeeds approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
/cherry-pick 18.0-fr6 |
|
@eduolivares: once the present PR merges, I will cherry-pick it on top of DetailsIn response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
9535333
into
openstack-k8s-operators:main
|
@eduolivares: new pull request created: #4042 DetailsIn response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
We have an ongoing SSL issue, combining two existing prs/commits into this one pr