[Pki-devel] [PATCH] 0026-5, 0044-3 Lightweight sub-CAs

Hi team, The latest sub-CAs patches are attached. It has been a while since the last patchset (that was posted here, anyway) and there have been some significant changes, outlined below. (The patchset version skipped a couple numbers due to versions distributed privately that I felt were not stable enough to warrant posting to pki-devel.) Major changes: - The Java client and CLI were extracted to a separate patch (0044). - An LDAP entry for each sub-CA is written to database. - Database searched and sub-CAs are initialised at startup - Key nickname is store in / read from LDAP entry - Sub-CA "list" API call, client method and CLI was added - More resources are shared between top-level CA and sub-CAs - Suprious task threads and LDAP connections hunted down :) Dependencies: - Patch 0026-5 probably depends on 0045[1] for a clean merge. - Patch 0044-3 depends on my patch 0046[2]. [1] https://www.redhat.com/archives/pki-devel/2015-August/msg00072.html [2] https://www.redhat.com/archives/pki-devel/2015-August/msg00073.html Cheers, Fraser