summaryrefslogtreecommitdiffstats
path: root/ipaserver
diff options
context:
space:
mode:
Diffstat (limited to 'ipaserver')
-rw-r--r--ipaserver/install/certs.py6
-rw-r--r--ipaserver/install/dsinstance.py2
2 files changed, 3 insertions, 5 deletions
diff --git a/ipaserver/install/certs.py b/ipaserver/install/certs.py
index 5399a0fa5..7292cbbe3 100644
--- a/ipaserver/install/certs.py
+++ b/ipaserver/install/certs.py
@@ -238,7 +238,7 @@ class CertDB(object):
"-k", self.passwd_fname])
self.set_perms(self.pk12_fname)
- def load_cacert(self, cacert_fname, trust_flags='C,,'):
+ def load_cacert(self, cacert_fname, trust_flags):
"""
Load all the certificates from a given file. It is assumed that
this file creates CA certificates.
@@ -255,11 +255,9 @@ class CertDB(object):
(rdn, subject_dn) = get_cert_nickname(cert)
if subject_dn == ca_dn:
nick = get_ca_nickname(self.realm)
- tf = trust_flags
else:
nick = str(subject_dn)
- tf = ',,'
- self.nssdb.add_cert(cert, nick, tf, pem=True)
+ self.nssdb.add_cert(cert, nick, trust_flags, pem=True)
except RuntimeError:
break
diff --git a/ipaserver/install/dsinstance.py b/ipaserver/install/dsinstance.py
index 06c13c21d..66267f4cd 100644
--- a/ipaserver/install/dsinstance.py
+++ b/ipaserver/install/dsinstance.py
@@ -840,7 +840,7 @@ class DsInstance(service.Service):
certdb.cacert_name = cacert_name
status = True
try:
- certdb.load_cacert(cacert_fname)
+ certdb.load_cacert(cacert_fname, 'C,,')
except ipautil.CalledProcessError, e:
root_logger.critical("Error importing CA cert file named [%s]: %s" %
(cacert_fname, str(e)))
generated by cgit (git 2.34.1) at 2024-09-19 22:49:21 +0000