URL: https://github.com/SSSD/sssd/pull/814 Title: #814: certmap: allow missing KU in OpenSSL version
jhrozek commented: """ I'm sorry it took me almost a week to test the new patches. They seem to work fine: ``` [root@client ~]# sssctl cert-show $(base64 -w0 /home/jhrozek/certuser.der) ldb: unable to dlopen /usr/lib64/ldb/modules/ldb/memberof.la : /usr/lib64/ldb/modules/ldb/memberof.la: invalid ELF header sss cert content (format might change): Issuer: CN=federation test CA,OU=federation test,O=federation Subject: CN=certuser,OU=SSSD test,O=SSSD Key Usage: 176(0x00b0) (digitalSignature,keyEncipherment,dataEncipherment) Extended Key Usage #0: 1.3.6.1.5.5.7.3.1 (serverAuth) Extended Key Usage #1: 1.3.6.1.5.5.7.3.2 (clientAuth) [root@client ~]# sssctl cert-map $(base64 -w0 /home/jhrozek/certuser.der) ldb: unable to dlopen /usr/lib64/ldb/modules/ldb/memberof.la : /usr/lib64/ldb/modules/ldb/memberof.la: invalid ELF header certuser ``` """ See the full comment at https://github.com/SSSD/sssd/pull/814#issuecomment-496689261
_______________________________________________ sssd-devel mailing list -- sssd-devel@lists.fedorahosted.org To unsubscribe send an email to sssd-devel-le...@lists.fedorahosted.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/sssd-devel@lists.fedorahosted.org