[Bug 246614] certctl(8) silently overwrites certs with same subjects

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=246614

--- Comment #13 from Kyle Evans <kevans at freebsd.org> ---
I've updated the review to more thoroughly remove the 'serial' nomenclature and
fix the problem with list and a couple other spots.

I'm punting on the blacklist revamp for now, but I've slapped a band-aid on the
blacklist functionality so that it least kind of works. For checking if a cert
is blacklisted, we now grab all /etc/ssl/blacklisted/$hash.* and do a hard diff
-q to see if it's the cert we care about. Future work will likely completely
rewrite certctl in (f)lua so that we can optimize and fix this.

-- 
You are receiving this mail because:
You are on the CC list for the bug.