Commit - freeipa - 00097c1dd82f55b1e004b9d6eb4f6ed7fb6ffca8

freeipa

`00097c1` certdb: never use the -r option of certutil

1 file Authored by jcholast 8 years ago, Committed by mbasti 8 years ago,

raw patch tree parent

1 file changed. 5 lines added. 5 lines removed.

    certdb: never use the -r option of certutil
    
    The -r option makes certutil output certificates in DER. If there are
    multiple certificates sharing the same nickname, certutil will output
    them concatenated into a single blob. The blob is not a valid DER
    anymore and causes failures further in the code.
    
    Use the -a option instead to output the certificates in PEM and convert
    them to DER on demand.
    
    https://fedorahosted.org/freeipa/ticket/5117
    https://fedorahosted.org/freeipa/ticket/5720
    
    Reviewed-By: David Kupka <dkupka@redhat.com>

ipapython/certdb.py

file modified

+5 -5

freeipa

Source Code

00097c1 certdb: never use the -r option of certutil

1 file Authored by jcholast 8 years ago, Committed by mbasti 8 years ago,

`00097c1` certdb: never use the -r option of certutil