pki-bot
commented
4 years ago Comment from mharmsen (@mharmsen) at 2015-07-29 05:18:20
Pushed to master:
- f9102b8df60d50e00d2a45915d06837510cfd1aa
Closed pki-bot closed 4 years ago
pki-bot
commented
4 years ago Comment from mharmsen (@mharmsen) at 2015-07-29 05:18:20
Pushed to master:
pki-bot
commented
4 years ago Comment from mharmsen (@mharmsen) at 2015-08-10 18:48:55
Modified in 10.2.6-4.
pki-bot
commented
4 years ago Comment from cfu (@cfu) at 2017-02-27 14:07:09
Metadata Update from @cfu:
This issue was migrated from Pagure Issue #1524. Originally filed by cfu (@cfu) on 2015-07-29 01:11:25:
Ran into the following with pkispawn when the system and admin cert are ecc:
pkispawn : ERROR ....... subprocess.CalledProcessError: Command '['certutil', '-R', '-d', '/opt/pki-cfu-ecc3/ca/alias', '-s', 'cn=PKI Administrator,e=caadmin@Example.com,o=pki-cfu-ecc3.org', '-g', 'nistp256', '-z', '/opt/pki-cfu-ecc3/ca/alias/noise', '-f', '/opt/pki-cfu-ecc3/ca/password.conf', '-o', '/opt/pki-cfu-ecc3/ca/alias/admin_pkcs10.bin']' returned non-zero exit status 255!
Two issues I observed: (1) the key type is not specified; by default, if not specified, rsa is assumed; It needs -k ec (2) key curve needs to use "-q" to specify, not "-g" (which is for rsa key size). It needs -q