On Thu, Aug 13, 2015 at 12:43:35PM +0200, Pavel Březina wrote:
On 08/10/2015 12:59 PM, Jakub Hrozek wrote:
>the attached patches fix #2742. The first one makes sure we can print
>the certificate (or any binary attribute, really) safely. We only need
>to make sure to escape the attribute values before saving them to sysdb,
>because then ldb guarantees terminating them.
>The second just switches the attribute value. I tested using this howto:
>You'll also want to use a recent enough IPA version, one that fixes:
>Then, on the client, call:
> dbus-send --print-reply \
> --system \
> --dest=org.freedesktop.sssd.infopipe \
> /org/freedesktop/sssd/infopipe/Users \
> org.freedesktop.sssd.infopipe.Users.FindByCertificate \
> string:"$( openssl x509 < cert.pem )"
>The result will be an object path.
Thanks for the patience during the tmate.io review :-)
Pushed to master: