PR#261: Don't restrict tokens to CKM_RSA_X_509 - certmonger - Pagure.io

certmonger

#261 Don't restrict tokens to CKM_RSA_X_509

Merged a year ago by rcritten. Opened a year ago by rcritten.

rcritten/certmonger issue_260 into master

Don't restrict tokens to CKM_RSA_X_509

Rob Crittenden • a year ago

15bb67b

src/certsave-n.c

file modified

+1 -1

		`@@ -282,7 +282,7 @@`
		`_exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR);`
		`}`
		`/* Find the tokens that we might use for cert storage. */`
		`- mech = CKM_RSA_X_509;`
		`+ mech = CKM_INVALID_MECHANISM;`
		`slotlist = PK11_GetAllTokens(mech, PR_FALSE, PR_FALSE, NULL);`
		`if (slotlist == NULL) {`
		`cm_log(1, "Error getting list of tokens.\n");`

rcritten commented a year ago

This mechanism is raw RSA and too specific for other tokens.

Instead return all tokens and let the user determine whether it
is fit for purpose.

Fixes: https://pagure.io/certmonger/issue/260

Signed-off-by: Rob Crittenden rcritten@redhat.com

Metadata

Assignee

None

Tags

No Tags

Changes Summary 1

file changed

src/certsave-n.c

Powered by Pagure 5.13.3

Documentation • File an Issue • About • SSH Hostkey/Fingerprint

© Red Hat, Inc. and others.