On Thu, Jun 25, 2015 at 05:32:28PM +0200, 'Helga Velroyen' via ganeti-devel wrote: > So far, all of Ganeti's server certificates had the serial > number '1'. While this works, it makes it hard to > distinguish situations where the certificate is > renewed from those where it wasn't. This patch uses > a timestamp as serial number. > > While this is still not stricly according to the SSL RFC, > it is at least a number that is stricly growing and we > can be sure that no two different server certificates > will have the same serial number. > > Signed-off-by: Helga Velroyen <[email protected]> > --- > lib/backend.py | 4 +++- > 1 file changed, 3 insertions(+), 1 deletion(-)
LGTM -- Klaus Aehlig Google Germany GmbH, Dienerstr. 12, 80331 Muenchen Registergericht und -nummer: Hamburg, HRB 86891 Sitz der Gesellschaft: Hamburg Geschaeftsfuehrer: Graham Law, Christine Elizabeth Flores
