qa/openssl-keys: enable wildcard dns with subjectAltName

author Casey Bodley <cbodley@redhat.com>

Mon, 27 Apr 2026 14:53:38 +0000 (10:53 -0400)

committer Casey Bodley <cbodley@redhat.com>

Wed, 20 May 2026 14:20:24 +0000 (10:20 -0400)
author Casey Bodley <cbodley@redhat.com>
Mon, 27 Apr 2026 14:53:38 +0000 (10:53 -0400)
committer Casey Bodley <cbodley@redhat.com>
Wed, 20 May 2026 14:20:24 +0000 (10:20 -0400)
diff --git a/qa/tasks/openssl_keys.py b/qa/tasks/openssl_keys.py

index 2d26a87290d73b2b2279c2f7e33154015cba5d1a..729c35dbfc8cfe557555dd613af9a3a836dadd17 100644 (file)
--- a/qa/tasks/openssl_keys.py
+++ b/qa/tasks/openssl_keys.py
@@ -147,8 +147,8 @@ class OpenSSLKeys(Task):
              if san_ext:
                  remove_files.append(ext)
                  ca_cert.remote.write_file(path=ext,
-                    data='subjectAltName = DNS:{},IP:{}'.format(
-                        cn,
+                        data='subjectAltName = DNS:{},DNS:*.{},IP:{}'.format(
+                        cn, cn,
                          config.get('ip', cert.remote.ip_address)))
  
              # create the signed certificate
author	Casey Bodley <cbodley@redhat.com>
	Mon, 27 Apr 2026 14:53:38 +0000 (10:53 -0400)
committer	Casey Bodley <cbodley@redhat.com>
	Wed, 20 May 2026 14:20:24 +0000 (10:20 -0400)