Use server hostname when creating secure websocket VNC console tests may fail if SSL is terminated on a front-end load balancer that relies on SNI. With this change, when SSL wrapping the socket for a wss connection, the optional server_hostname parameter is included, in order to allow the server (or SSL terminating entity) to respond with correct certificate. The create_websocket function is used by the vnc console tests here: - tempest/api/compute/admin/test_live_migration.py - tempest/api/compute/servers/test_novnc.py Change-Id: I8025742607e591821a5e90b5c193ba6cbbc3a241

commit: 8e08a77eab9f8f13c3e81f2411cd567789b9a7e6 [log] [tgz]
author: Phil Sphicas <phil.sphicas@att.com> Thu Mar 24 10:09:49 2022 -0700
committer: Phil Sphicas <phil.sphicas@att.com> Fri Mar 25 15:01:05 2022 -0700
tree: 7287c547e21abd159371d6ca24b05a36001a10ce
parent: dc9a93b6adacc959066ffb118e26bc85ae997fb8 [diff]
diff --git a/tempest/common/compute.py b/tempest/common/compute.py
index 8fda911..eb7e366 100644
--- a/tempest/common/compute.py
+++ b/tempest/common/compute.py

@@ -395,7 +395,8 @@
         af, socktype, proto, _, sa = res
         client_socket = socket.socket(af, socktype, proto)
         if url.scheme == 'https':
-            client_socket = sslc().wrap_socket(client_socket)
+            client_socket = sslc().wrap_socket(client_socket,
+                                               server_hostname=url.hostname)
         client_socket.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
         try:
             client_socket.connect(sa)
commit	8e08a77eab9f8f13c3e81f2411cd567789b9a7e6	[log] [tgz]
author	Phil Sphicas <phil.sphicas@att.com>	Thu Mar 24 10:09:49 2022 -0700
committer	Phil Sphicas <phil.sphicas@att.com>	Fri Mar 25 15:01:05 2022 -0700
tree	7287c547e21abd159371d6ca24b05a36001a10ce
parent	dc9a93b6adacc959066ffb118e26bc85ae997fb8 [diff]