Merge pull request #1048 from Qmli04:QmLi

internal/certdeploy/deployers/sp_tencentcloud_waf.go

@@ -20,6 +20,7 @@ func init() {
 			SecretId:   credentials.SecretId,
 			SecretKey:  credentials.SecretKey,
 			Endpoint:   xmaps.GetString(options.ProviderExtendedConfig, "endpoint"),
+			Region:     xmaps.GetString(options.ProviderExtendedConfig, "region"),
 			Domain:     xmaps.GetString(options.ProviderExtendedConfig, "domain"),
 			DomainId:   xmaps.GetString(options.ProviderExtendedConfig, "domainId"),
 			InstanceId: xmaps.GetString(options.ProviderExtendedConfig, "instanceId"),

pkg/core/certmgr/providers/aliyun-slb/aliyun_slb.go

@@ -85,8 +85,10 @@ func (c *Certmgr) Upload(ctx context.Context, certPEM, privkeyPEM string) (*cert
 	}
 
 	if describeServerCertificatesResp.Body.ServerCertificates != nil && describeServerCertificatesResp.Body.ServerCertificates.ServerCertificate != nil {
-		fingerprint := sha256.Sum256(certX509.Raw)
-		fingerprintHex := hex.EncodeToString(fingerprint[:])
+		sha256Fingerprint := sha256.Sum256(certX509.Raw)
+		sha256FingerprintHex := hex.EncodeToString(sha256Fingerprint[:])
+		sha1Fingerprint := sha1.Sum(certX509.Raw)
+		sha1FingerprintHex := hex.EncodeToString(sha1Fingerprint[:])
 		for _, certItem := range describeServerCertificatesResp.Body.ServerCertificates.ServerCertificate {
 			if tea.Int32Value(certItem.IsAliCloudCertificate) != 0 {
 				continue
@@ -94,7 +96,8 @@ func (c *Certmgr) Upload(ctx context.Context, certPEM, privkeyPEM string) (*cert
 			if !strings.EqualFold(certX509.Subject.CommonName, tea.StringValue(certItem.CommonName)) {
 				continue
 			}
-			if !strings.EqualFold(fingerprintHex, strings.ReplaceAll(tea.StringValue(certItem.Fingerprint), ":", "")) {
+			if !strings.EqualFold(sha256FingerprintHex, strings.ReplaceAll(tea.StringValue(certItem.Fingerprint), ":", "")) &&
+				!strings.EqualFold(sha1FingerprintHex, strings.ReplaceAll(tea.StringValue(certItem.Fingerprint), ":", "")) {
 				continue
 			}