August 2016 - Pki-devel - Dogtag Pki List Archives

[PATCH] 0128 Fix CA OCSP responder when LWCA's are not in use

by Fraser Tweedale

Hi team, The attached patch fixes https://fedorahosted.org/pki/ticket/2420. Thanks, Fraser

7 years, 8 months

3
3
0 / 0

[PATCH] 812 Moved upgrade scripts for RHEL.

by Endi Sukma Dewata

On RHEL the upgrade scripts after 10.3.3 have been moved into the 10.3.3 folder to match RHEL version number. https://fedorahosted.org/pki/ticket/2403 Pushed to master under one-liner/trivial rule. -- Endi S. Dewata

7 years, 8 months

1
0
0 / 0

[PATCH] 811 Split link customization in RPM spec.

by Endi Sukma Dewata

The code that customizes the links to the JAR files has been split between client and server packages. https://fedorahosted.org/pki/ticket/2403 Pushed to master under one-liner/trivial rule. -- Endi S. Dewata

7 years, 8 months

1
0
0 / 0

[PATCH] 810 Fixed RPM spec for client-only build.

by Endi Sukma Dewata

The RPM spec has been fixed not to include the %pre script for the pki-server package if --without-server parameter is specified. https://fedorahosted.org/pki/ticket/2403 Pushed to master under one-liner/trivial rule. -- Endi S. Dewata

7 years, 8 months

1
0
0 / 0

[PATCH] Added python-urllib3 dependency

by Matthew Harmsen

Please review this patch which addresses the following ticket: * PKI TRAC Ticket #2431 - Errors noticed during ipa server upgrade. <https://fedorahosted.org/pki/ticket/2431> -- Matt

7 years, 8 months

2
1
0 / 0

[PATCH] 807-809 Fixed PKCS #12 import for cloning.

by Endi Sukma Dewata

To fix cloning issue in IPA the security_database.py has been modified to import all certificates and keys in the PKCS #12 file before the PKI server is started. Since the PKCS #12 generated by IPA may not contain the certificate trust flags, the script will also reset the trust flags on the imported certificates (i.e. CT,C,C for CA certificate and u,u,Pu for audit certificate). https://fedorahosted.org/pki/ticket/2424 -- Endi S. Dewata

7 years, 8 months

1
2
0 / 0

[PATCH 0011] Added check for Subsystem data and request in 'pki-server subsystem-cert-export'

by Abhijeet Kasurde

Hi All, Please review this patch. Partially fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1353245 -- Thanks, Abhijeet Kasurde IRC: akasurde http://akasurde.github.io

7 years, 8 months

2
1
0 / 0

[PATCH] Fix NumberFormatException for tps-cert-find when given non integer value to size and start option

by Geetika Kapoor

Hi, I tried to fix NumberFormatException when i did tps-cert-find with non-integer/invalid range value for size and start.I was doing testing for tps-cert and then i came across this.I thought giving some additional info to users inplace of numberformat.I have done similar fix on rhel7 compile it and make a jar and test on rhel7 .I can share that patch if needed. Below are the test result. Before fix testing: 1. pki -h pki1.example.com -p 25080 tps-cert-find --start "gy" NumberFormatException: For input string: "gy" 2. pki -h pki1.example.com -p 25080 tps-cert-find --size "gy" NumberFormatException: For input string: "gy" 3. pki -p 25080 tps-cert-find --start 1789999999999999999999999999999999999999999999 NumberFormatException: For input string: "1789999999999999999999999999999999999999999999" After fix testing: 1. [root@pki1 ~]# pki -d /opt/rhqa_pki/certdb -c Secret123 -h pki1.example.com -p 25080 tps-cert-find --start "gy" Error: Enter valid integer value for size/start option usage: tps-cert-find [FILTER] [OPTIONS...] --help Show help options --size <size> Page size --start <start> Page start --token <ID> Token ID 2. [root@pki1 ~]# pki -d /opt/rhqa_pki/certdb -c Secret123 -h pki1.example.com -p 25080 tps-cert-find --size "hy" Error: Enter valid integer value for size/start option usage: tps-cert-find [FILTER] [OPTIONS...] --help Show help options --size <size> Page size --start <start> Page start --token <ID> Token ID 3. [root@pki1 ~]# pki -d /opt/rhqa_pki/certdb -c Secret123 -h pki1.example.com -p 25080 tps-cert-find --start 1 ----------------- 2 entries matched ----------------- Cert ID: 3d.20160720042931 Serial Number: 0x3d Subject: UID=ldapuser7,O=Token Key User Token ID: 40906145C76224192D78 Key Type: encryption Status: active User ID: ldapuser7 Create Time: Wed Jul 20 04:29:31 EDT 2016 ---------------------------- Number of entries returned 1 ---------------------------- 4. [root@pki1 ~]# pki -d /opt/rhqa_pki/certdb -c Secret123 -h pki1.example.com -p 25080 tps-cert-find --size 1 ----------------- 2 entries matched ----------------- Cert ID: 3c.20160720042931 Serial Number: 0x3c Subject: UID=ldapuser7,O=Token Key User Token ID: 40906145C76224192D78 Key Type: signing Status: active User ID: ldapuser7 Create Time: Wed Jul 20 04:29:31 EDT 2016 ---------------------------- Number of entries returned 1 ---------------------------- 5. [root@pki1 cert]# pki -d /opt/rhqa_pki/certdb -c Secret123 -h pki1.example.com -p 25080 tps-cert-find --start 1789999999999999999999999999999999999999999999 Error: Enter valid integer value for size/start option usage: tps-cert-find [FILTER] [OPTIONS...] --help Show help options --size <size> Page size --start <start> Page start --token <ID> Token ID Thanks Geetika

7 years, 8 months

2
4
0 / 0

[PATCH] pki-cfu-0150-Ticket-2428-broken-request-links-for-CA-s-system-cer.patch

by Christina Fu

Attached please find the patch that fixes the broken link from cert->request or just simply visiting request records from agent page on CA's system certs. thanks, Christina

7 years, 8 months

2
2
0 / 0

[PATCH] 329 - add pkispawn option to disable Master CRL

by Ade Lee

Add pkispawn option to disable Master CRL. This is useful in the migration case. Please review, Ade

7 years, 8 months

1
1
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

Pki-devel August 2016