[Pki-devel] [PATCH] 0109-Ticket-1375-Provide-cert-key-retention-for-externalR.patch
Christina Fu
cfu at redhat.com
Fri Jan 15 17:23:20 UTC 2016
verbal conditional ack from Jack.
addressed and committed.
commit 9a6a3d1cbf6e347b2cf0737afca4f793a6a0d0ba
Christina
On 01/13/2016 05:49 PM, Christina Fu wrote:
> Ticket #1375 Provide cert/key retention for externalReg
> Ticket #1514 TPS: Recovered certs on a token has status expired
> Ticket #1587 External Registration Recovery only works for 1024 sized
> keys out of the box
> This patch provides the cert/key retention feature for externalReg.
> if the
> certsToAdd field contains (serial,ca#) instead of the full (serial, ca#,
> keyId, kra#), then it is expecting the cert/key to be retained from
> token
> without having to do a full retrieval (recovery). This patch also
> fixes the
> issues reported in #1514 and #1587 as testing of #1375 is easier with
> those
> two issues addressed. An issue was found during development where
> Coolkey
> puts limits on the cert/key ids on the token and make it impossible
> to inject
> cert ID higher than 4, as it would then result in key ids into two
> digits.
> This issue will be filed as a separte ticket and addressed
> separately. Most
> testing will then be conducted.
>
> thanks,
> Christina
>
>
>
> _______________________________________________
> Pki-devel mailing list
> Pki-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/pki-devel
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20160115/c9324a3c/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pki-cfu-0110-Ticket-1375-Provide-cert-key-retention-for-externalR.patch
Type: text/x-patch
Size: 33677 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/pki-devel/attachments/20160115/c9324a3c/attachment.bin>
More information about the Pki-devel
mailing list