Commit 4cc092c4 authored by Geoff Simmons's avatar Geoff Simmons

Bugfix: TLS Secret invalid (status Fatal) if tls.crt or .key is empty.

parent 611199e1
......@@ -107,16 +107,18 @@ func (worker *NamespaceWorker) updateCertSecret(
string(api_v1.SecretTypeTLS))
}
crt, ok := tlsSecret.Data["tls.crt"]
if !ok {
if !ok || len(crt) == 0 {
return update.MakeFatal(
"Ingress TLS Secret %s/%s: key tls.crt not found",
"Ingress TLS Secret %s/%s: key tls.crt not found "+
"or empty",
tlsSecret.ObjectMeta.Namespace,
tlsSecret.ObjectMeta.Name)
}
key, ok := tlsSecret.Data["tls.key"]
if !ok {
if !ok || len(key) == 0 {
return update.MakeFatal(
"Ingress TLS Secret %s/%s: key tls.key not found",
"Ingress TLS Secret %s/%s: key tls.key not found "+
"or empty",
tlsSecret.ObjectMeta.Namespace,
tlsSecret.ObjectMeta.Name)
}
......@@ -127,7 +129,7 @@ func (worker *NamespaceWorker) updateCertSecret(
return update.MakeIncomplete("%v", err)
}
pem := string(crt)
if crt[len(crt)-1] != byte('\n') {
if len(crt) > 1 && crt[len(crt)-1] != byte('\n') {
pem += "\n"
}
pem += string(key)
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment