[Freeipa-devel] [freeipa PR#230][opened] cert-request: accept CSRs with extraneous data
frasertweedale
freeipa-github-notification at redhat.com
Thu Nov 10 13:26:37 UTC 2016
URL: https://github.com/freeipa/freeipa/pull/230
Author: frasertweedale
Title: #230: cert-request: accept CSRs with extraneous data
Action: opened
PR body:
"""
The cert-request command used to accept CSRs that had extra data
surrounding the PEM data, e.g. commentary about the contents of the
CSR. Recent commits that switch to using python-cryptography for
cert and CSR handling broke this. Our acceptance tests use such
CSRs, hence the tests are now failing.
To avoid the issue, freshly encode the python-cryptography
CertificateSigningRequest object as PEM. This avoids re-using the
user-supplied data, in case it has extraneous data.
Fixes: https://fedorahosted.org/freeipa/ticket/6472
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/230/head:pr230
git checkout pr230
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-pr-230.patch
Type: text/x-diff
Size: 2363 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20161110/208e2f1f/attachment.bin>
More information about the Freeipa-devel
mailing list