colin/NetworkManager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ifcfg-rh: fix read/write of EAP-TLS connections

Browse Source 
TLS uses the 'identity' which previously wasn't read.  The private key
password should also only be used for PKCS#12 files, becuase they aren't
decrypted when read into the setting.

Private keys also need to be handled differently; PKCS#12 keys are written
out unchanged (ie, still encrypted) with their corresponding private key.
DER keys are stored in the setting unencrypted, so they are re-encrypted
before being written out to disk.  But because the private key password
isn't known for DER keys, a random password must be used to re-encrypt
the key.
This commit is contained in:
Dan Williams
2009-03-31 07:29:31 -04:00
parent f4c1b422cf
commit bebe3e891b
10 changed files with 791 additions and 103 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
system-settings/plugins/ifcfg-rh/utils.h
View File

@@ -31,7 +31,7 @@ char *utils_hexstr2bin (const char *hex, size_t len);
char *utils_hash_byte_array (const GByteArray *data);
char *utils_cert_path (const char *parent, const char *prefix, const char *suffix);
char *utils_cert_path (const char *parent, const char *suffix);
char *utils_get_ifcfg_name (const char *file);