dirmngr
Karsten Künne
kuenne@rentec.com
Thu May 15 15:14:02 2003
--Boundary-02=_pBcs+vtOOPRKrzG
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Content-Description: signed data
Content-Disposition: inline
I just posted a small patch for dirmngr in order to fix a loop problem to t=
he=20
bugtracker but I forgot to include my email. Here it is again:
=2D-- src/ldap.c 2003-05-01 17:48:29.000000000 -0400
+++ src/ldap.c 2003-05-01 17:50:05.000000000 -0400
@@ -424,6 +424,8 @@
_bervalues =3D 0;
*last =3D 1;
}
+ } else {
+ *last =3D 1;
}
}
return ASSUAN_No_Error;
I also would like to know whether there is still some development going on =
on=20
dirmngr? I'm especially interested in http support for CRL-fetching because=
=20
all of our certs have a "http"-URI as CRL-distributionpoint. I also found o=
ut=20
that dirmngr takes the DN from a cert literally and tries to look that up i=
n=20
ldap which in our case doesn't work because our ldap base is=20
"dc=3Drentec,dc=3Dcom" whereas the certs contain "o=3Drentec,c=3Dus". It al=
so takes=20
the famous (or infamous?) "Email" RDN and makes something strange out of it=
,=20
for instance, "Email=3Dca@rentec.com" becomes=20
"email=3D#63614072656E7465632E636F6D". It would be nice to have some kind o=
f=20
(configurable) mapping between certificate DN's and ldap DN's.
Another problem is that dirmngr doesn't use the certs which gpgsm already=20
knows. For instance, if I want to fetch a CRL from ldap dirmngr tries to=20
retrieve the CA certificate from ldap but this certificate is already in=20
gpgsm's pubring.kbx. There is no need to fetch that from ldap again (which =
in=20
our case doesn't work because ldap and cert DN's don't match).
Other than that the aegypten support in kmail works very well.
Good work,
=2D-=20
Karsten.
"only wimps use backup: _real_ men just upload their important stuff
on ftp, and let the rest of the world mirror it ;)" - linus torvalds
--Boundary-02=_pBcs+vtOOPRKrzG
Content-Type: application/pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Description: signature
Content-Disposition: attachment; filename="smime.p7s"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--Boundary-02=_pBcs+vtOOPRKrzG--