Re: [OpenCA-Devel] relevance of CRL serial

Martin Bartosch Thu, 21 Jul 2005 03:31:11 -0700

Hi,

>> I'd prefer to have no holes in CRL serials, because it might be required
>> in certain environments that you are able to provide a complete track
>> of CRLs.
>> So I think we should consider extending the CRL table to include
>> a CRLNUMBER attribute (then possibly use max(crlnumber)+1 and a
>> DB transaction to assure that race conditions are not possible).
>
> If the CRL has a serial then this is the normal serial in the database.


Sorry, I thought the CRL_SERIAL was an internal key.

> Please see OpenCA::CRL. This was a fix for the ones who already use CRL
> serials. The only code which must be modified is getNewSerial. The code
> is simple:
>
> CRL ==> return $self->listItem (OBJECTTYPE => "CRL", MODE => ROWS) +1;

Agreed, this is pretty good. So from my side I am happy with this.

Martin



-------------------------------------------------------
SF.Net email is sponsored by: Discover Easy Linux Migration Strategies
from IBM. Find simple to follow Roadmaps, straightforward articles,
informative Webcasts and more! Get everything you need to get up to
speed, fast. http://ads.osdn.com/?ad_idt77&alloc_id492&op=click
_______________________________________________
OpenCA-Devel mailing list
OpenCA-Devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-devel

Re: [OpenCA-Devel] relevance of CRL serial

Reply via email to