[Pki-devel] [PATCH] cloning issues in 8.1
Ade Lee
alee at redhat.com
Wed Jul 10 20:25:04 UTC 2013
This is in response to
Basically, there are two issues.
1. We want to use the selected CA to generate the SSL server cert. In
the code though, for a clone, the code that sets the relevant preop
parameter used to determine the right CA to go to - is only run after we
issue the sslserver cert request. That means it always goes to the
security domain CA. This code is now reversed.
2. Due to a DS bug (which has been fixed), the attributes on the
pkiSubsystem entry in the clone CA security domain database we in lower
case, rather than the existing case. Thats actually ok from an ldap
point of view. We create some XML from those attributes -- just in
case, we should make the XML matches in this case case insensitive.
Please review.
Thanks,
Ade
-------------- next part --------------
A non-text attachment was scrubbed...
Name: cloning.patch
Type: text/x-patch
Size: 20851 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20130710/57e51deb/attachment.bin>
More information about the Pki-devel
mailing list