[Yum-devel] [PATCH] Try to workaround the case where non-root users can't read certs. BZ 690904.

James Antill james at fedoraproject.org
Wed Feb 15 14:54:17 UTC 2012


On Wed, 2012-02-15 at 05:18 -0500, Zdenek Pavlas wrote:
> > Subject: [Yum-devel] [PATCH] Try to workaround the case where non-root users	can't read certs. BZ 690904.
> > 
> > ---
> >  docs/yum.conf.5 |   13 +++++++++++++
> >  yum/__init__.py |   12 ++++++++++++
> >  yum/config.py   |    2 ++
> >  3 files changed, 27 insertions(+), 0 deletions(-)
> 
> ACK.  Not sure if we need it configurable, but it should not hurt.

 Yeh, as I thought about it I decided that the biggest likelyhood is
that someone would prefer that yum just die completely instead of
skipping their cert. repos. and so would want to turn this off.
 Not 100% sure it's really needed though.

> > +    ssl_check_cert_permissions = BoolOption(True)
> > +    ssl_check_cert_permissions = Inherit(YumConf.sslclientkey)
>                                                     ^^^^^^^^^^^^
> That's a typo!

 Thanks, fixed :).



More information about the Yum-devel mailing list