Remove deprecated call to BuildNameToCertificate (#13811)

This function call was previously used to generate mappings from potential subjects (or SANs) to certificates within the TLS client object. However, newer Go versions have deprecated this method, instead building the mapping automatically based on present certificates at request time. Because the corresponding client configuration field is not used in Vault (NameToCertificate), it is safe to remove this call and leave it nil. See also: 67d894ee65 See also: https://pkg.go.dev/crypto/tls#Config.BuildNameToCertificate Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
2025-10-31 02:28:09 +00:00 · 2022-01-27 14:56:21 -05:00
parent d14ee7d867
commit 06137630b9
4 changed files with 0 additions and 5 deletions
--- a/api/plugin_helpers.go
+++ b/api/plugin_helpers.go
@@ -182,7 +182,6 @@ func VaultPluginTLSProvider(apiTLSConfig *TLSConfig) func() (*tls.Config, error)
 			Certificates: []tls.Certificate{cert},
 			ServerName:   serverCert.Subject.CommonName,
 		}
-		tlsConfig.BuildNameToCertificate()

 		return tlsConfig, nil
 	}