lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-13 00:07:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

System: Trust - temporary disable validation of multiple certs in a ca, as discussed in 76228b0a45 (r146422317) with @fichtner

Browse Source
This commit is contained in:
Ad Schellevis 2024-09-09 12:27:05 +02:00
parent f954d5f889
commit ebddde95f4
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/opnsense/scripts/system/certctl.py
View File

@ -45,9 +45,10 @@ def get_name_hash_file_pattern(filename):
x509_item = x509.load_pem_x509_crl(open(filename, 'rb').read())
elif fext in ['pem', 'cer', 'crt']:
tmp = x509.load_pem_x509_certificates(open(filename, 'rb').read())
if len(tmp) > 1:
print('Skipping %s as it does not contain exactly one certificate' % filename)
return None
# XXX: should be enabled after investigating the ca_root_nss situation
# if len(tmp) > 1:
# print('Skipping %s as it does not contain exactly one certificate' % filename)
# return None
x509_item = tmp[0]
else:
# not supported