[Freeipa-devel] [PATCH] 242 new method to identify CAs to trust
Rob Crittenden
rcritten at redhat.com
Thu Jul 23 21:57:02 UTC 2009
A new way to identify the CAs to trust when importing a PKCS#12 file
(like during replica installation). We used to use certutil -O but
Fedora 11 changed certutil so it doesn't show untrusted CAs (the whole
point of running the command).
Instead parse the output of pk12util -l to find the nicknames of the CAs
to trust.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-242-trust.patch
Type: application/mbox
Size: 4015 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20090723/8d116ba9/attachment.mbox>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20090723/8d116ba9/attachment.bin>
More information about the Freeipa-devel
mailing list