[Bug 246614] certctl(8) silently overwrites certs with same subjects
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon Aug 24 14:27:48 UTC 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=246614
--- Comment #8 from Kyle Evans <kevans at freebsd.org> ---
(In reply to Michael Osipov from comment #6)
> * create_blacklisted() is completely ill-designed for several reasons:
> ** When processing all links must be purged first
> ** Blacklisted certs should not be linked at all
> ** using <hash>.r<digit> is wrong because the r suffix is solely reserved for CRLs. Look into c_rehash: elsif($hdr eq "X509 CRL") {$is_crl = 1;..}
They shouldn't be linked, so they should probably just retain their original
name and get copied in rather than messing with <hash>.<digit> notation, right?
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the freebsd-bugs
mailing list