freeipa/ipaserver
Fraser Tweedale e1df2e0792 cert-request: accept CSRs with extraneous data
The cert-request command used to accept CSRs that had extra data
surrounding the PEM data, e.g. commentary about the contents of the
CSR.  Recent commits that switch to using python-cryptography for
cert and CSR handling broke this.  Our acceptance tests use such
CSRs, hence the tests are now failing.

To avoid the issue, freshly encode the python-cryptography
CertificateSigningRequest object as PEM.  This avoids re-using the
user-supplied data, in case it has extraneous data.

Fixes: https://fedorahosted.org/freeipa/ticket/6472
Reviewed-By: Martin Babinsky <mbabinsk@redhat.com>
2016-11-11 15:42:26 +01:00
..
advise advise: Use name instead of __name__ to get plugin names 2016-09-08 17:28:24 +02:00
install dns: check if container exists using ldapi 2016-11-11 14:55:24 +01:00
plugins cert-request: accept CSRs with extraneous data 2016-11-11 15:42:26 +01:00
__init__.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00
dcerpc.py ipaldap: merge IPAdmin to LDAPClient 2016-11-07 11:34:03 +01:00
dns_data_management.py Fix compatibility with python-dns 1.15.0 2016-10-11 15:45:41 +02:00
Makefile.am Build: Makefiles for Python packages 2016-11-09 13:08:32 +01:00
rpcserver.py pylint: enable the import-error check 2016-10-24 14:11:08 +02:00
servroles.py Introduce "NTP server" role 2016-06-15 13:51:48 +02:00
session.py pylint: enable the import-error check 2016-10-24 14:11:08 +02:00
setup.cfg Port all setup.py to setuptools 2016-10-20 18:43:37 +02:00
setup.py Build: fix module name in ipaserver/setup.py 2016-11-09 13:08:32 +01:00
topology.py Fix topologysuffix-verify failing connections 2016-06-24 13:32:02 +02:00