https://bugzilla.novell.com/show_bug.cgi?id=609449
https://bugzilla.novell.com/show_bug.cgi?id=609449#c4
Igor Podgorski changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |igor.podgorski@securelinx.c
| |om
--- Comment #4 from Igor Podgorski 2012-05-22 16:26:34 UTC ---
I have come across the same issue when creating a server certificate in
OpenSUSE 11.4 and SLES 11 SP1.
There problem is in /usr/share/YaST2/include/ca-management/commandline.ycp in
cmdCreateCertificate (starts at line 59). The problem occurs because
new_cert_init ("Server Certificate") on line 69 is called before the CA
password was read from the command line which happens further down starting at
line 96: if (haskey (options, "capasswd"))....
So, I moved the block (lines 96-103) taking in the capasswd from the command
line and put it above the block calling for new cert (lines 63-75).
Diff below:
--- commandline.ycp-orig 2012-05-21 11:57:52.000000000 +0100
+++ commandline.ycp 2012-05-21 11:58:57.000000000 +0100
@@ -60,6 +60,15 @@
CaMgm::CAName = options["caname"]:"";
CaMgm::currentCA = options["caname"]:"";
+ if (haskey (options, "capasswd"))
+ {
+ CaMgm::passwdMap[CaMgm::CAName] = options["capasswd"]:"";
+ }
+ else
+ {
+ CaMgm::passwdMap[CaMgm::CAName] = strip(getenv("capasswd"));
+ }
+
if (options["type"]:"" == "client")
{
new_cert_init ("Client Certificate");
@@ -93,15 +102,6 @@
CaMgm::password = strip(getenv("keyPasswd"));
}
- if (haskey (options, "capasswd"))
- {
- CaMgm::passwdMap[CaMgm::CAName] = options["capasswd"]:"";
- }
- else
- {
- CaMgm::passwdMap[CaMgm::CAName] = strip(getenv("capasswd"));
- }
-
boolean ret = true;
if (options["kind"]:"" == "client")
{
I can confirm that after making this change I can create a new certificate
using the CA password supplied on the command line.
Igor
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.