[issue63] gpgsm: pkcs#7 certs-only import is order dependent
Bernhard Herzog
aegypten-issues at intevation.de
Mon Feb 2 16:00:43 CET 2004
New submission from Bernhard Herzog <bh at intevation.de>:
When importing certificates from a pkcs#7 file containing multiple certificates
it depends on the order of the certificates whether all or only one of the
certificates are imported. E.g. given three certificates.
Root: The certificate of the root CA
CA: certificate of a CA issued by Root
User: user certificate issued by CA
Assume gpgsm doesn't know any of these certificates yet.
Now, when the pkc2#7 contains the certificates in the order Root,CA,User, gpgsm
--import only imports the root CA. When repeated, the CA certificate is
imported and on a third try the user certificate.
OTOH, if the order is the opposite, i.e. User,CA,Root, all three certs are
imported at once.
----------
assignedto: werner
messages: 270
nosy: bh, werner
priority: bug
status: unread
title: gpgsm: pkcs#7 certs-only import is order dependent
topic: gpgsm
______________________________________________________
Aegypten issue tracker <aegypten-issues at intevation.de>
<https://intevation.de/roundup/aegypten/issue63>
______________________________________________________
More information about the Gpa-dev
mailing list