[Freeipa-devel] [PATCH] 242 new method to identify CAs to trust

Rob Crittenden Thu, 23 Jul 2009 14:57:13 -0700

A new way to identify the CAs to trust when importing a PKCS#12 file (like during replica installation). We used to use certutil -O but Fedora 11 changed certutil so it doesn't show untrusted CAs (the whole point of running the command).

Instead parse the output of pk12util -l to find the nicknames of the CAs to trust.

rob

freeipa-242-trust.patch
Description: application/mbox

smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
Freeipa-devel mailing list
Freeipa-devel@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-devel

[Freeipa-devel] [PATCH] 242 new method to identify CAs to trust

Reply via email to