[PATCH] 167 - fix for code to select signing algorithm for admin cert - Pki-devel - Dogtag Pki List Archives

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

[PATCH] 167 - fix for code to select signing algorithm for admin cert

[PATCH] 332 Updated version number...

[PATCH] 313 Added TPS profile...

Ade Lee

Wednesday, 30 October 2013 Wed, 30 Oct '13

3:19 p.m.

The code to select the signing algorithm for the admin cert in a CA install is broken. Right now, it will select SHA1 by default. This patch fixes the broken logic and adds some additional checks. Please review, Ade

Attachments:

pki-vakwetu-0167-Fixed-logic-for-setting-admin-cert-signing-algorithm.patch (text/x-patch — 9.4 KB)

Reply

Show replies by date

Christina Fu

Wednesday, 30 October Wed, 30 Oct

4:50 p.m.

looks good per our discussion over irc. One little nitpick: + * 2. Gets default.params.signingAlg from profile. + * If entry does not exist, selects first algorithm in allowed algorithm list that matches How about "If entry does not exist, or contains a "-", selects first ..." ? Conditional ACK (just fix that little comment then you are good). thanks, Christina On 10/30/2013 01:19 PM, Ade Lee wrote:

The code to select the signing algorithm for the admin cert in a CA install is broken. Right now, it will select SHA1 by default. This patch fixes the broken logic and adds some additional checks. Please review, Ade _______________________________________________ Pki-devel mailing list Pki-devel(a)redhat.com https://www.redhat.com/mailman/listinfo/pki-devel

Reply

Ade Lee

Thursday, 31 October Thu, 31 Oct

12:32 a.m.

Made change and pushed to master and 10.0. Still to be merged to Dogtag 9 and RHCS 8.x. Ade On Wed, 2013-10-30 at 14:50 -0700, Christina Fu wrote:

looks good per our discussion over irc. One little nitpick: + * 2. Gets default.params.signingAlg from profile. + * If entry does not exist, selects first algorithm in allowed algorithm list that matches How about "If entry does not exist, or contains a "-", selects first ..." ? Conditional ACK (just fix that little comment then you are good). thanks, Christina On 10/30/2013 01:19 PM, Ade Lee wrote: > The code to select the signing algorithm for the admin cert in a CA > install is broken. Right now, it will select SHA1 by default. > > This patch fixes the broken logic and adds some additional checks. > Please review, > > Ade > > > _______________________________________________ > Pki-devel mailing list > Pki-devel(a)redhat.com > https://www.redhat.com/mailman/listinfo/pki-devel _______________________________________________ Pki-devel mailing list Pki-devel(a)redhat.com https://www.redhat.com/mailman/listinfo/pki-devel

Reply

4069

days inactive

4070

days old

devel@lists.dogtagpki.org

Manage subscription

2 comments

2 participants

tags (0)

participants (2)

Ade Lee
Christina Fu