Confusing error message when storing certificate already present in trust store

[ueno]

When the trust paths are configured as below:

$ pkg-config --variable p11_trust_paths p11-kit-1
/etc/pki/ca-trust/source:/usr/share/pki/ca-trust-source

calling trust anchor after manually copying the certificate in either of the above directory prints a confusing error:

$ trust anchor /etc/pki/ca-trust/source/anchors/ca.crt
p11-kit: couldn't create object: The field is read-only
p11-kit: 1 error while processing

The trust anchor command should check the argument a little earlier before proceeding to overwrite.

Originally reported by Lukas Hanusovsky in: https://bugzilla.redhat.com/show_bug.cgi?id=2024927

[thorian93]

It is 2024, and I still wasted a solid 15 minutes to understand my error. This error message could be way better!