From 8b22f22bd3a259d46baf36b37f3389a922da46aa Mon Sep 17 00:00:00 2001
From: Dario Tranchitella <dario@tranchitella.eu>
Date: Thu, 27 Mar 2025 18:34:57 +0100
Subject: [PATCH] fix: check cert names and ips including tcp address (#758)

Signed-off-by: Dario Tranchitella <dario@tranchitella.eu>
---
 internal/resources/api_server_certificate.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/internal/resources/api_server_certificate.go b/internal/resources/api_server_certificate.go
index fe2e715..436cdf9 100644
--- a/internal/resources/api_server_certificate.go
+++ b/internal/resources/api_server_certificate.go
@@ -136,9 +136,9 @@ func (r *APIServerCertificate) mutate(ctx context.Context, tenantControlPlane *k
 
 			commonNames := config.InitConfiguration.APIServer.CertSANs
 
-			if tenantControlPlane.Spec.ControlPlane.Ingress != nil {
-				address, _ := utilities.GetControlPlaneAddressAndPortFromHostname(tenantControlPlane.Spec.ControlPlane.Ingress.Hostname, 6443)
-				commonNames = append(commonNames, address)
+			addr, _, aErr := tenantControlPlane.AssignedControlPlaneAddress()
+			if aErr == nil {
+				commonNames = append(commonNames, addr)
 			}
 
 			dnsNamesMatches, dnsErr := crypto.CheckCertificateNamesAndIPs(r.resource.Data[kubeadmconstants.APIServerCertName], commonNames)