[Freeipa-devel] [PATCH] 242 new method to identify CAs to trust
Jason Gerard DeRose
jderose at redhat.com
Mon Jul 27 22:06:10 UTC 2009
On Fri, 2009-07-24 at 09:30 -0400, Rob Crittenden wrote:
> Jason Gerard DeRose wrote:
> > On Thu, 2009-07-23 at 17:57 -0400, Rob Crittenden wrote:
> >> A new way to identify the CAs to trust when importing a PKCS#12 file
> >> (like during replica installation). We used to use certutil -O but
> >> Fedora 11 changed certutil so it doesn't show untrusted CAs (the whole
> >> point of running the command).
> >>
> >> Instead parse the output of pk12util -l to find the nicknames of the CAs
> >> to trust.
> >>
> >> rob
> >
> > The code looks fine, but I can't get it to apply.
> >
>
> I needed to do a rebase. New patch attached that should apply cleanly to
> the tip.
>
> rob
ack. pushed to master.
More information about the Freeipa-devel
mailing list