[Freeipa-devel] [PATCH] 242 new method to identify CAs to trust
Rob Crittenden
rcritten at redhat.com
Fri Jul 24 13:30:34 UTC 2009
Jason Gerard DeRose wrote:
> On Thu, 2009-07-23 at 17:57 -0400, Rob Crittenden wrote:
>> A new way to identify the CAs to trust when importing a PKCS#12 file
>> (like during replica installation). We used to use certutil -O but
>> Fedora 11 changed certutil so it doesn't show untrusted CAs (the whole
>> point of running the command).
>>
>> Instead parse the output of pk12util -l to find the nicknames of the CAs
>> to trust.
>>
>> rob
>
> The code looks fine, but I can't get it to apply.
>
I needed to do a rebase. New patch attached that should apply cleanly to
the tip.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-242-2-trust.patch
Type: application/mbox
Size: 4278 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20090724/3db48c48/attachment.mbox>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20090724/3db48c48/attachment.bin>
More information about the Freeipa-devel
mailing list