SnakeOil Can Sign Certificates with wrong CA
Bug #1499874 reported by
Dave McCowan
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Barbican |
Fix Released
|
Critical
|
Dave McCowan |
Bug Description
SnakeOil Can Sign Certificates with wrong CA
Changed in barbican: | |
milestone: | none → liberty-rc1 |
importance: | Undecided → Critical |
status: | New → In Progress |
assignee: | nobody → Dave McCowan (dave-mccowan) |
Changed in barbican: | |
status: | Fix Committed → Fix Released |
Changed in barbican: | |
milestone: | liberty-rc1 → 1.0.0 |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/228032 /git.openstack. org/cgit/ openstack/ barbican/ commit/ ?id=5c67eabd7ce 664180b5e1ca59c 91c1b4a919e6fc
Committed: https:/
Submitter: Jenkins
Branch: master
commit 5c67eabd7ce6641 80b5e1ca59c91c1 b4a919e6fc
Author: Dave McCowan <email address hidden>
Date: Fri Sep 25 16:23:04 2015 -0400
Use subCA when specified to sign CSRs
Snakeoil was always using the root CA to sign CSRs. With this
commit it will use the CA whose reference was passed.
Change-Id: I6afee4414aa4d2 878f619f0f36503 61a7b1d6ea8 implements: blueprint add-cas
Closes-Bug: 1499874
Partially-