diff options
Diffstat (limited to 'ipapython/platform/fedora19/__init__.py')
-rw-r--r-- | ipapython/platform/fedora19/__init__.py | 48 |
1 files changed, 0 insertions, 48 deletions
diff --git a/ipapython/platform/fedora19/__init__.py b/ipapython/platform/fedora19/__init__.py index 9b931625b..0981f4ff4 100644 --- a/ipapython/platform/fedora19/__init__.py +++ b/ipapython/platform/fedora19/__init__.py @@ -70,51 +70,3 @@ service = fedora18.service knownservices = fedora18.knownservices restore_context = fedora18.restore_context check_selinux_status = fedora18.check_selinux_status - -systemwide_ca_store = '/etc/pki/ca-trust/source/anchors/' - - -def insert_ca_cert_into_systemwide_ca_store(cacert_path): - # Add the 'ipa-' prefix to cert name to avoid name collisions - cacert_name = os.path.basename(cacert_path) - new_cacert_path = os.path.join(systemwide_ca_store, 'ipa-%s' % cacert_name) - - # Add the CA to the systemwide CA trust database - try: - shutil.copy(cacert_path, new_cacert_path) - run(['/usr/bin/update-ca-trust']) - except OSError, e: - root_logger.info("Failed to copy %s to %s" % (cacert_path, - new_cacert_path)) - except CalledProcessError, e: - root_logger.info("Failed to add CA to the systemwide " - "CA trust database: %s" % str(e)) - else: - root_logger.info('Added the CA to the systemwide CA trust database.') - return True - - return False - - -def remove_ca_cert_from_systemwide_ca_store(cacert_path): - # Derive the certificate name in the store - cacert_name = os.path.basename(cacert_path) - new_cacert_path = os.path.join(systemwide_ca_store, 'ipa-%s' % cacert_name) - - # Remove CA cert from systemwide store - if os.path.exists(new_cacert_path): - try: - os.remove(new_cacert_path) - run(['/usr/bin/update-ca-trust']) - except OSError, e: - root_logger.error('Could not remove: %s, %s' - % (new_cacert_path, str(e))) - return False - except CalledProcessError, e: - root_logger.error('Could not update systemwide CA trust ' - 'database: %s' % str(e)) - return False - else: - root_logger.info('Systemwide CA database updated.') - - return True |